Vulnerabilities > Technicolor

DATE CVE VULNERABILITY TITLE RISK
2018-12-25 CVE-2018-20441 Insufficiently Protected Credentials vulnerability in Technicolor Tc7200.Th2V2 Firmware Sc05.00.22
Technicolor TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
network
low complexity
technicolor CWE-522
critical
9.8
2018-12-25 CVE-2018-20440 Insufficiently Protected Credentials vulnerability in Technicolor Cwa0101 Firmware Cwa0101Ea23Ec7000R5712170315Skc
Technicolor CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
9.8
2018-12-25 CVE-2018-20439 Insufficiently Protected Credentials vulnerability in Technicolor Dpc3928Sl Firmware D3928Slpsip13A010C3420R55105170214A
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
9.8
2018-12-25 CVE-2018-20438 Insufficiently Protected Credentials vulnerability in Technicolor Tc7110.Ar Firmware
Technicolor TC7110.AR STD3.38.03 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
network
low complexity
technicolor CWE-522
critical
9.8
2018-12-23 CVE-2018-20394 Insufficiently Protected Credentials vulnerability in Technicolor products
Thomson DWG849 STC0.01.16, DWG850-4 ST9C.05.25, DWG855 ST80.20.26, and TWG870 STB2.01.36 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
technicolor CWE-522
critical
9.8
2018-12-23 CVE-2018-20393 Unspecified vulnerability in Technicolor products
Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU, CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC, DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a, TC7110.AR STD3.38.03, TC7110.B STC8.62.02, TC7110.D STDB.79.02, TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT, and TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
technicolor
critical
9.8
2018-12-23 CVE-2018-20381 Unspecified vulnerability in Technicolor Dpc2320 Firmware Dpc2300R2V202R1244101150420Av6
Technicolor DPC2320 dpc2300r2-v202r1244101-150420a-v6 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
technicolor
critical
9.8
2018-12-23 CVE-2018-20379 Cross-site Scripting vulnerability in Technicolor Dpc3928Sl Firmware D3928Slpsip13A010C3420R55105160428A
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a devices allow XSS via a Cross Protocol Injection attack with setSSID of 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.10001.
network
high complexity
technicolor CWE-79
4.7
2018-09-06 CVE-2018-16310 Resource Exhaustion vulnerability in Technicolor Tg588V Firmware
Technicolor TG588V V2 devices allow remote attackers to cause a denial of service (networking outage) via a flood of random MAC addresses, as demonstrated by macof.
low complexity
technicolor CWE-400
6.5
2018-08-29 CVE-2018-15907 Resource Exhaustion vulnerability in Technicolor Tc8305C Firmware
Technicolor (formerly RCA) TC8305C devices allow remote attackers to cause a denial of service (networking outage) via a flood of random MAC addresses, as demonstrated by macof.
low complexity
technicolor CWE-400
6.5