CVE-2017-14115

Name of the Vulnerable Software and Affected Versions Arris NVG589 and NVG599 devices version 9.2.2h0d83

Description The firmware configures ssh-permanent-enable WAN SSH logins to the remotessh account with the 5SaP9I26 password when IP Passthrough mode is not used. This allows remote attackers to access a "Terminal shell v1.0" service and obtain unrestricted root privileges by establishing an SSH session and entering certain shell metacharacters and BusyBox commands.

Recommendations For version 9.2.2h0d83, consider disabling the WAN SSH logins to the remotessh account until a patch is available. Restrict access to the SSH service to minimize the risk of exploitation. Avoid using the default password 5SaP9I26 for the remotessh account.