Vulnerabilities > Technicolor > Dpc3928Sl

DATE CVE VULNERABILITY TITLE RISK
2018-12-25 CVE-2018-20439 Insufficiently Protected Credentials vulnerability in Technicolor Dpc3928Sl Firmware D3928Slpsip13A010C3420R55105170214A
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
5.0
2018-12-23 CVE-2018-20393 Unspecified vulnerability in Technicolor products
Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU, CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC, DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a, TC7110.AR STD3.38.03, TC7110.B STC8.62.02, TC7110.D STDB.79.02, TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT, and TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
technicolor
5.0
2018-12-23 CVE-2018-20379 Cross-site Scripting vulnerability in Technicolor Dpc3928Sl Firmware D3928Slpsip13A010C3420R55105160428A
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a devices allow XSS via a Cross Protocol Injection attack with setSSID of 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.10001.
network
high complexity
technicolor CWE-79
2.6
2017-04-27 CVE-2017-5135 SNMP Authentication Bypass vulnerability in Technicolor Dpc3928Sl Firmware D3928Slp1513A386C3420R55105160127A
Certain Technicolor devices have an SNMP access-control bypass, possibly involving an ISP customization in some cases.
network
low complexity
technicolor
6.4