CVE-2017-9479

Name of the Vulnerable Software and Affected Versions Cisco DPC3939 version dpc3939-P20-18-v303r20421746-170221a-CMCST

Description The issue allows remote attackers to execute arbitrary commands as root by leveraging local network access and connecting to the syseventd server. This can be achieved by copying configuration data into a readable filesystem, thus enabling the execution of shell commands with root privileges.

Recommendations For Cisco DPC3939 version dpc3939-P20-18-v303r20421746-170221a-CMCST, consider restricting access to the syseventd server as a temporary workaround until a patch is available. Additionally, limiting local network access can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.