CVE-2017-9476

Name of the Vulnerable Software and Affected Versions Cisco DPC3939 version dpc3939-P20-18-v303r20421733-160420a-CMCST Cisco DPC3939 version dpc3939-P20-18-v303r20421746-170221a-CMCST Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682 2.2p7s2 PROD sey)

Description The issue allows remote attackers to easily determine the hidden SSID and passphrase for a Home Security Wi-Fi network. This is due to a problem in the Comcast firmware on the affected devices.

Recommendations For Cisco DPC3939 version dpc3939-P20-18-v303r20421733-160420a-CMCST, update the firmware to a version that is not affected by this issue. For Cisco DPC3939 version dpc3939-P20-18-v303r20421746-170221a-CMCST, update the firmware to a version that is not affected by this issue. For Arris TG1682G (eMTA&DOCSIS version 10.0.132.SIP.PC20.CT, software version TG1682 2.2p7s2 PROD sey), update the firmware to a version that is not affected by this issue. As a temporary workaround, consider changing the Wi-Fi network settings to use a different security method until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.