Vulnerabilities > Technicolor > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-12 | CVE-2018-25034 | Unspecified vulnerability in Technicolor Thomson Tcw710 Firmware St5D.10.05 A vulnerability, which was classified as problematic, has been found in Thomson TCW710 ST5D.10.05. | 5.4 |
| 2022-06-12 | CVE-2018-25035 | Cross-site Scripting vulnerability in Technicolor Thomson Tcw710 Firmware St5D.10.05 A vulnerability, which was classified as problematic, was found in Thomson TCW710 ST5D.10.05. | 5.4 |
| 2022-06-12 | CVE-2018-25036 | Cross-site Scripting vulnerability in Technicolor Thomson Tcw710 Firmware St5D.10.05 A vulnerability has been found in Thomson TCW710 ST5D.10.05 and classified as problematic. | 5.4 |
| 2022-06-12 | CVE-2018-25037 | Cross-site Scripting vulnerability in Technicolor Thomson Tcw710 Firmware St5D.10.05 A vulnerability was found in Thomson TCW710 ST5D.10.05 and classified as problematic. | 5.4 |
| 2022-06-12 | CVE-2018-25038 | Cross-site Scripting vulnerability in Technicolor Thomson Tcw710 Firmware St5D.10.05 A vulnerability was found in Thomson TCW710 ST5D.10.05. | 5.4 |
| 2022-06-12 | CVE-2018-25039 | Cross-site Scripting vulnerability in Technicolor Thomson Tcw710 Firmware St5D.10.05 A vulnerability was found in Thomson TCW710 ST5D.10.05. | 5.4 |
| 2019-11-13 | CVE-2019-17524 | Cross-site Scripting vulnerability in Technicolor Tc7300.B0 Firmware Stfa.51.20 An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbitrary web script via the "Connected Clients" field to /wlanAccess.asp. | 5.4 |
| 2019-11-13 | CVE-2019-17523 | Cross-site Scripting vulnerability in Technicolor Tc7300.B0 Firmware Stfa.51.20 An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbitrary web script via the FileName parameter to /FTPDiag.asp. | 5.4 |
| 2019-11-06 | CVE-2015-7276 | Use of Hard-coded Credentials vulnerability in Technicolor C2000T Firmware and C2100T Firmware Technicolor C2000T and C2100T uses hard-coded cryptographic keys. | 5.9 |
| 2019-01-03 | CVE-2018-8827 | Cross-site Scripting vulnerability in Technicolor Tg789Vac Firmware 16.3.7190276100520161004084353 The admin web interface on Technicolor MediaAccess TG789vac v2 HP devices with firmware v16.3.7190-2761005-20161004084353 displays unsanitised user input, which allows an unauthenticated malicious user to embed JavaScript into the Log viewer interface via a crafted HTTP Referer header, aka XSS. | 6.1 |