CVE-2018-20393

Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU, CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC, DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a, TC7110.AR STD3.38.03, TC7110.B STC8.62.02, TC7110.D STDB.79.02, TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT, and TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:technicolor:cga0111_firmware:cga0111e-es-13-e23e-c8000r5712-170217-0829-tru:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:cga0111:1.0:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:technicolor:cga0101_firmware:cwa0101e-a23e-c7000r5712-170315-skc:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:cga0101:1.0:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:technicolor:dpc3928sl_firmware:d3928sl-psip-13-a010-c3420r55105-170214a:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:dpc3928sl:1.0:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:technicolor:tc7110.ar_firmware:std3.38.03:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.ar:1.0:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:technicolor:tc7110.b_firmware:stc8.62.02:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.b:2.0:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:technicolor:tc7110.d_firmware:stdb.79.02:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.d:1.0:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:technicolor:tc7200.d1i_firmware:tc7200.d1ie-n23e-c7000r5712-170406-hat:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7200.d1i:1.0:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:technicolor:tc7200.th2v2.d1i_firmware:sc05.00.22:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7200.th2v2.d1i:01.00:*:*:*:*:*:*:*

History

21 Nov 2024, 04:01

Type Values Removed Values Added
References () https://github.com/ezelf/sensitivesOids/blob/master/oidpassswordleaks.csv - Third Party Advisory () https://github.com/ezelf/sensitivesOids/blob/master/oidpassswordleaks.csv - Third Party Advisory
References () https://misteralfa-hack.blogspot.com/2018/12/stringbleed-y-ahora-que-passwords-leaks.html - Exploit, Third Party Advisory () https://misteralfa-hack.blogspot.com/2018/12/stringbleed-y-ahora-que-passwords-leaks.html - Exploit, Third Party Advisory

Information

Published : 2018-12-23 21:29

Updated : 2024-11-21 04:01


NVD link : CVE-2018-20393

Mitre link : CVE-2018-20393

CVE.ORG link : CVE-2018-20393


JSON object : View

Products Affected

technicolor

  • cga0101
  • tc7110.b
  • cga0101_firmware
  • tc7110.d_firmware
  • tc7110.ar
  • dpc3928sl_firmware
  • cga0111
  • tc7200.d1i
  • tc7200.d1i_firmware
  • tc7110.d
  • tc7110.ar_firmware
  • dpc3928sl
  • tc7200.th2v2.d1i_firmware
  • cga0111_firmware
  • tc7110.b_firmware
  • tc7200.th2v2.d1i