Vulnerabilities > Insufficiently Protected Credentials

DATE CVE VULNERABILITY TITLE RISK
2018-12-25 CVE-2018-20440 Insufficiently Protected Credentials vulnerability in Technicolor Cwa0101 Firmware Cwa0101Ea23Ec7000R5712170315Skc
Technicolor CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20439 Insufficiently Protected Credentials vulnerability in Technicolor Dpc3928Sl Firmware D3928Slpsip13A010C3420R55105170214A
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20438 Insufficiently Protected Credentials vulnerability in Technicolor Tc7110.Ar Firmware
Technicolor TC7110.AR STD3.38.03 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-24 CVE-2018-18698 Insufficiently Protected Credentials vulnerability in MI Xiaomi Mi-A1 Firmware
An issue was discovered on Xiaomi Mi A1 tissot_sprout:8.1.0/OPM1.171019.026/V9.6.4.0.ODHMIFE devices.
network
low complexity
mi CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20401 Insufficiently Protected Credentials vulnerability in Zoomtel 5352 Firmware 5.5.8.6Y
Zoom 5352 v5.5.8.6Y devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
zoomtel CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20400 Insufficiently Protected Credentials vulnerability in Ubeeinteractive Dvw2108 Firmware and Dvw2110 Firmware
Ubee DVW2108 6.28.1017 and DVW2110 6.28.2012 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
ubeeinteractive CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20399 Insufficiently Protected Credentials vulnerability in Motorola Sbg901 Firmware, Sbg941 Firmware and Svg1202 Firmware
Motorola SBG901 SBG901-2.10.1.1-GA-00-581-NOSH, SBG941 SBG941-2.11.0.0-GA-07-624-NOSH, and SVG1202 SVG1202-2.1.0.0-GA-14-LTSH devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
motorola CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20398 Insufficiently Protected Credentials vulnerability in Skyworthdigital products
Skyworth CM5100 V1.1.0, CM5100-440 V1.2.1, CM5100-511 4.1.0.14, CM5100-GHD00 V1.2.2, and CM5100.g2 4.1.0.17 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
skyworthdigital CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20397 Insufficiently Protected Credentials vulnerability in Mplustec Cbc383Z Firmware Cbc383Zmplusmdr026
mplus CBC383Z CBC383Z_mplus_MDr026 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
mplustec CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20396 Insufficiently Protected Credentials vulnerability in Telaum Ming2120J Firmware and Ming6300 Firmware
NET&SYS MNG2120J 5.76.1006c and MNG6300 5.83.6305jrc2 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
telaum CWE-522
critical
 9.8
9.8