Vulnerabilities (CVE)

Filtered by vendor Commscope Subscribe
Filtered by product Dg3450 Firmware
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-27572 1 Commscope 2 Dg3450, Dg3450 Firmware 2024-02-28 N/A 6.1 MEDIUM
An issue was discovered in CommScope Arris DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. A reflected XSS vulnerability was discovered in the https_redirect.php web page via the page parameter.
CVE-2023-27571 1 Commscope 2 Dg3450, Dg3450 Firmware 2024-02-28 N/A 5.3 MEDIUM
An issue was discovered in DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. The troubleshooting_logs_download.php log file download functionality does not check the session cookie. Thus, an attacker can download all log files.