CVE-2014-8423

ARRIS VAP2500 Firmware < 08.41 - Remote Command Execution

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2014-8423. PoCs published by HeadlessZeke, including Metasploit module exploits/linux/http/vap2500_tools_command_exec.

AI-analyzed exploit summary This Ruby script exploits an authentication bypass vulnerability in VAP2500 devices by leveraging weak MD5-based session cookies to execute arbitrary commands as root, modify the root password, and enable telnet access.

Description

Unspecified vulnerability in the management portal in ARRIS VAP2500 before FW08.41 allows remote attackers to execute arbitrary commands via unknown vectors.

Exploits (2)

exploitdb WORKING POC

rubywebappshardware

https://www.exploit-db.com/exploits/35372

View Code ZIP pw:eip

This Ruby script exploits an authentication bypass vulnerability in VAP2500 devices by leveraging weak MD5-based session cookies to execute arbitrary commands as root, modify the root password, and enable telnet access.

Classification

Working Poc 100%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: VAP2500 (firmware version unknown)

No auth needed

Prerequisites: Network access to the VAP2500 device · Knowledge of the device's IP address

MITRE ATT&CK

T1110 - Brute Force T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

metasploit WORKING POC NORMAL

by HeadlessZeke · rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/vap2500_tools_command_exec.rb

View Code ZIP pw:eip

This Metasploit module exploits an OS command injection vulnerability in Arris VAP2500 access points via the tools_command.php page, bypassing authentication by setting a cookie to an MD5 hash of a valid username.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Arris VAP2500 access points

No auth needed

Prerequisites: Network access to the target device · Knowledge of a valid username for MD5 hash generation

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1202 - Indirect Command Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Third Party Advisory x_refsource_misc

http://www.zerodayinitiative.com/advisories/ZDI-14-389/

Scores

EPSS 0.4169

EPSS Percentile 97.5%

Details

CWE

CWE-74

Status published

Products (1)

arris/vap2500_firmware < 08.41

Published Nov 28, 2014

Tracked Since Feb 18, 2026