CVE-2022-45701

HIGH

Arris TG2482A Firmware <= 9.1.103GEM9 - Remote Code Execution via Ping Utility

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 4 public exploits for CVE-2022-45701. PoCs published by Yerodin Richards, yerodin, geniuszly.

AI-analyzed exploit summary This exploit leverages an authenticated RCE vulnerability in Arris Router Firmware 9.1.103 by manipulating SNMP OID values to execute a reverse shell via netcat. The payload is injected into specific OIDs to achieve command execution.

Description

Arris TG2482A firmware through 9.1.103GEM9 allow Remote Code Execution (RCE) via the ping utility feature.

Exploits (4)

exploitdb WORKING POC
by Yerodin Richards · pythonremotehardware
https://www.exploit-db.com/exploits/51269

This exploit leverages an authenticated RCE vulnerability in Arris Router Firmware 9.1.103 by manipulating SNMP OID values to execute a reverse shell via netcat. The payload is injected into specific OIDs to achieve command execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Arris Router Firmware 9.1.103 (TG2482A, TG2492, SBG10)
Auth required
Prerequisites: Valid admin credentials · Network access to the router · Netcat or similar listener on attacker machine
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 7 stars
by yerodin · poc
https://github.com/yerodin/CVE-2022-45701

This PoC exploits an authenticated RCE vulnerability in Arris Router Firmware 9.1.103 by leveraging SNMP OID manipulation to execute a reverse shell. The exploit uses base64-encoded credentials for authentication and constructs a payload to trigger a netcat-based reverse shell.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Arris Router Firmware 9.1.103 (TG2482A, TG2492, SBG10)
Auth required
Prerequisites: Network access to the router · Valid admin credentials · SNMP service enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 5 stars
by geniuszly · poc
https://github.com/geniuszly/CVE-2022-45701

This Python script exploits CVE-2022-45701, a remote code execution vulnerability in Arris routers, by manipulating SNMP settings via the web interface to execute arbitrary commands. It includes a reverse shell payload and requires authentication.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Arris routers (TG2482A, TG2492, SBG10)
Auth required
Prerequisites: Authenticated access to the router's web interface · Network connectivity to the target router · Local host setup to receive reverse shell
devstral-2 · analyzed Feb 16, 2026 Full analysis →
inthewild WORKING POC
poc
https://github.com/geniuszlyy/cve-2022-45701

This repository contains a functional Python exploit for CVE-2022-45701, targeting Arris routers. The exploit leverages SNMP manipulation via the web interface to achieve remote code execution (RCE) by setting specific OID values and injecting a reverse shell payload.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Arris routers (models TG2482A, TG2492, SBG10)
Auth required
Prerequisites: Authenticated access to the router's web interface · Python 3.x with 'requests' library · Network connectivity to the target router
devstral-2 · analyzed Feb 23, 2026 Full analysis →

References (2)

Core 2

Scores

CVSS v3 8.8
EPSS 0.3530
EPSS Percentile 97.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact total

Details

CWE
CWE-77
Status published
Products (3)
commscope/arris_sbg10_firmware < 9.1.103
commscope/arris_tg2482a_firmware < 9.1.103
commscope/arris_tg2492_firmware < 9.1.103
Published Feb 17, 2023
Tracked Since Feb 18, 2026