I just dug an old sb6141 out of a parts bin and hit it with the POCs. Got 400s despite it running an http server of some sort, so not sure how broadly this affects the modem lines. Would definitely be nice to have more comprehensive info on what is affected.
>Arris DOCSIS modems probably still have a lot of Motorola DNA in them since Arris's 2012 acquisition of Motorola Home.
I would assume so, but cable modems are such an obvious major target that I'd be very surprised if they didn't check as well so the absence is notable. There may be some divergence due to them not being AIO devices, or requirements from the cable companies over the last decade. Or of course it could be that's still not public disclosure, but that'd be a bit surprising too since I'd expect any attackers to immediately go check every single other Arris product right away on seeing this.
At any rate though while it's something I'll now be keeping an eye on I'm still satisfied that the modems are fairly well walled off too. It's a wild world out there, and incidents like this are nice to point to when management asks if it's worth the bit of extra trouble to have even some minimal separation. Just the performance benefits of having WAPs ideally positioned for wireless vs dictated by where the WAN link comes in is of course helpful as well, there are some real performance and coverage deliverables that everyone can feel in day to day usage that comes from separating out functionality as well. But efforts to go after network infrastructure itself are certainly ongoing too, it's a good compromise target both directly and in terms of pivoting to everything else. From a public good standpoint, router botnets are also a real hassle to the rest of the planet since they're used for a range of other bad activities.
I have a box somewhere with near-identical Motorola/Arris surfboards other than the logo and color.