CVE-2021-20119

Summary

The password change utility for the Arris SurfBoard SB8200 can have safety measures bypassed that allow any logged-in user to change the administrator password.

Affected Software

VendorProductVersion RangeStatus
n/aArris SurfBoard SB8200Arris SurfBoard SB8200 AB01.02.053.01_112320_193.0A.NSHaffected

Weaknesses

  • Insecure Password Change Utility

ADP Enrichment

CVE Program Container

Additional References

References