Unauthorized Access Risk in Technicolor TC7337 Devices
CVE-2020-11449

7.5HIGH

Key Information:

Vendor: Technicolor
Status: Tc7337 Firmware
Vendor: CVE Published:; 1 April 2020

🔔 Create Technicolor Vulnerability Alert

What is CVE-2020-11449?

An identified security issue in Technicolor TC7337 devices permits unauthorized actors to access sensitive administrative credentials stored in backup files, specifically within the file named backupsettings.conf. This exposure can lead to significant security risks, making it crucial for users to secure their devices against potential breaches.

References

https://github.com/RioIsDown/TC7337

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 1, 2020
Vulnerability Reserved
Apr 1, 2020