Remote Information Disclosure in Technicolor TC7200.d1I Devices
CVE-2018-20443

9.8CRITICAL

Key Information:

Vendor: Technicolor
Status: Tc7200.d1i Firmware
Vendor: CVE Published:; 25 December 2018

🔔 Create Technicolor Vulnerability Alert

What is CVE-2018-20443?

Devices such as the Technicolor TC7200.d1I and TC7200.d1IE-N23E-c7000r5712-170406-HAT are susceptible to a vulnerability that allows remote attackers to access sensitive Wi-Fi credentials through specific SNMP requests. This security flaw exposes information that could be exploited for unauthorized access to networks, raising significant security concerns for users reliant on these devices. Implementing security measures to safeguard against such exploits is critical for maintaining network integrity.

References

https://misteralfa-hack.blogspot.com/2018/12/technicolor-...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 25, 2018