CVE-2014-4863

Arris Touchstone DG950A <7.10.131 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-4863. PoCs published by Deral, Heiland, including Metasploit module auxiliary/scanner/snmp/arris_dg950.

AI-analyzed exploit summary This Metasploit module exploits an SNMP information disclosure vulnerability in Arris DG950A cable modems to extract WiFi credentials (WEP/WPA keys) and configuration details. It queries specific OIDs to retrieve sensitive data without authentication.

Description

The Arris Touchstone DG950A cable modem with software 7.10.131 has an SNMP community of public, which allows remote attackers to obtain sensitive password, key, and SSID information via an SNMP request.

Exploits (1)

metasploit WORKING POC
by Deral, Heiland · rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/snmp/arris_dg950.rb

This Metasploit module exploits an SNMP information disclosure vulnerability in Arris DG950A cable modems to extract WiFi credentials (WEP/WPA keys) and configuration details. It queries specific OIDs to retrieve sensitive data without authentication.

Classification
Working Poc 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Arris DG950A Cable Modem
No auth needed
Prerequisites: Network access to the target device · SNMP service enabled on the target
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/855836

Scores

EPSS 0.1570
EPSS Percentile 96.4%

Details

CWE
CWE-200
Status published
Products (2)
arris/touchstone_dg950a
arris/touchstone_dg950a_software 7.10.131
Published Sep 05, 2014
Tracked Since Feb 18, 2026