Strix
26.1K

CVE-2012-3047

UnknownEPSS 0.94%

Last modified

CVE-2012-3047 is a vulnerability of currently unknown severity. Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.. EPSS estimates a 0.94% chance of exploitation in the next 30 days.

Description

Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Metrics

EPSS Probability
0.94%

56.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoScientific Atlanta Dpc\/Epc 3208All versions
CiscoScientific Atlanta Dpc\/Epc2100All versions
CiscoScientific Atlanta Dpc\/Epc2202All versions
CiscoScientific Atlanta Dpc\/Epc2203All versions
CiscoScientific Atlanta Dpc\/Epc2325All versions
CiscoScientific Atlanta Dpc\/Epc2425All versions
CiscoScientific Atlanta Dpc\/Epc2434All versions
CiscoScientific Atlanta Dpc\/Epc2505All versions
CiscoScientific Atlanta Dpc\/Epc3010All versions
CiscoScientific Atlanta Dpc\/Epc3212All versions
CiscoScientific Atlanta Dpc2420All versions
CiscoScientific Atlanta Dpc3000\/Epc3000All versions
CiscoScientific Atlanta Dpc3008\/Epc3008All versions
CiscoScientific Atlanta Dpc3825All versions
CiscoScientific Atlanta Dpc3925All versions
CiscoScientific Atlanta Dpq\/Epq2160All versions
CiscoScientific Atlanta Dpq2202All versions
CiscoScientific Atlanta Dpq2425All versions
CiscoScientific Atlanta Dpq3212All versions
CiscoScientific Atlanta Dpq3925All versions
CiscoScientific Atlanta Dpr362All versions
CiscoScientific Atlanta Dpw700All versions
CiscoScientific Atlanta Dpw730All versions
CiscoScientific Atlanta Dpw939All versions
CiscoScientific Atlanta Dpw941All versions
CiscoScientific Atlanta Dpx\/Epx2100All versions
CiscoScientific Atlanta Dpx\/Epx2203All versions
CiscoScientific Atlanta Dpx\/Epx2203cAll versions
CiscoScientific Atlanta Dpx100\/120All versions
CiscoScientific Atlanta Dpx110All versions
CiscoScientific Atlanta Dpx130All versions
CiscoScientific Atlanta Dpx213All versions
CiscoScientific Atlanta Dpx2213All versions
CiscoScientific Atlanta Epc2420All versions
CiscoScientific Atlanta Epc3825All versions
CiscoScientific Atlanta Epc3925All versions
CiscoScientific Atlanta Wag310gAll versions

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2012-3047?
Cross-site scripting (XSS) vulnerability in the web-wizard setup page on Cisco Scientific Atlanta D20 and D30 cable modems allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
How severe is CVE-2012-3047?
Severity scoring for CVE-2012-3047 is pending analysis. The EPSS model estimates a 0.94% probability of exploitation in the next 30 days.
How do I fix CVE-2012-3047?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2012-3047?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST