Vulnerabilities > Technicolor > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-03-11 CVE-2020-10376 Cleartext Transmission of Sensitive Information vulnerability in Technicolor Tc7337Net Firmware 08.89.17.23.03
Technicolor TC7337NET 08.89.17.23.03 devices allow remote attackers to discover passwords by sniffing the network for an "Authorization: Basic" HTTP header.
network
low complexity
technicolor CWE-319
critical
 9.8
9.8
2020-01-08 CVE-2019-19495 Improper Input Validation vulnerability in Technicolor Tc7230 Steb Firmware 0.1.25
The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser.
network
low complexity
technicolor CWE-20
critical
 9.8
9.8
2018-12-25 CVE-2018-20444 Insufficiently Protected Credentials vulnerability in Technicolor Cga0111 Firmware Cga0111Ees13E23Ec8000R57121702170829Tru
Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20443 Insufficiently Protected Credentials vulnerability in Technicolor Tc7200.D1I Firmware Tc7200.D1Ien23Ec7000R5712170406Hat
Technicolor TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20442 Insufficiently Protected Credentials vulnerability in Technicolor Tc7110.B Firmware Stc8.62.02
Technicolor TC7110.B STC8.62.02 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20441 Insufficiently Protected Credentials vulnerability in Technicolor Tc7200.Th2V2 Firmware Sc05.00.22
Technicolor TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20440 Insufficiently Protected Credentials vulnerability in Technicolor Cwa0101 Firmware Cwa0101Ea23Ec7000R5712170315Skc
Technicolor CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20439 Insufficiently Protected Credentials vulnerability in Technicolor Dpc3928Sl Firmware D3928Slpsip13A010C3420R55105170214A
Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-25 CVE-2018-20438 Insufficiently Protected Credentials vulnerability in Technicolor Tc7110.Ar Firmware
Technicolor TC7110.AR STD3.38.03 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8
2018-12-23 CVE-2018-20394 Insufficiently Protected Credentials vulnerability in Technicolor products
Thomson DWG849 STC0.01.16, DWG850-4 ST9C.05.25, DWG855 ST80.20.26, and TWG870 STB2.01.36 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
network
low complexity
technicolor CWE-522
critical
 9.8
9.8