CVE-2018-20393 - Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU, CWA0101 CWA0101E-A23E-c7000r5712

CVE-2018-20393

Summary

Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU, CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC, DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a, TC7110.AR STD3.38.03, TC7110.B STC8.62.02, TC7110.D STDB.79.02, TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT, and TC7200.TH2v2 SC05.00.22 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.

References

Vulnerable Configurations

cpe:2.3:o:technicolor:cga0111_firmware:cga0111e-es-13-e23e-c8000r5712-170217-0829-tru:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:cga0111_firmware:cga0111e-es-13-e23e-c8000r5712-170217-0829-tru:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:cga0111:1.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:cga0111:1.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:cga0101_firmware:cwa0101e-a23e-c7000r5712-170315-skc:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:cga0101_firmware:cwa0101e-a23e-c7000r5712-170315-skc:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:cga0101:1.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:cga0101:1.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:dpc3928sl_firmware:d3928sl-psip-13-a010-c3420r55105-170214a:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:dpc3928sl_firmware:d3928sl-psip-13-a010-c3420r55105-170214a:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:dpc3928sl:1.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:dpc3928sl:1.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7110.ar_firmware:std3.38.03:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7110.ar_firmware:std3.38.03:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.ar:1.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.ar:1.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7110.b_firmware:stc8.62.02:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7110.b_firmware:stc8.62.02:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.b:2.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.b:2.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7110.d_firmware:stdb.79.02:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7110.d_firmware:stdb.79.02:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.d:1.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7110.d:1.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7200.d1i_firmware:tc7200.d1ie-n23e-c7000r5712-170406-hat:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7200.d1i_firmware:tc7200.d1ie-n23e-c7000r5712-170406-hat:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7200.d1i:1.0:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7200.d1i:1.0:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7200.th2v2.d1i_firmware:sc05.00.22:*:*:*:*:*:*:*
cpe:2.3:o:technicolor:tc7200.th2v2.d1i_firmware:sc05.00.22:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7200.th2v2.d1i:01.00:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tc7200.th2v2.d1i:01.00:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 24-08-2020 - 17:37)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

misc

Last major update

24-08-2020 - 17:37

Published

23-12-2018 - 21:29

Last modified

24-08-2020 - 17:37