CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
82.9%
Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication.
Vendor | Product | Version | CPE |
---|---|---|---|
alcatel | adsl_modem_1000 | * | cpe:2.3:h:alcatel:adsl_modem_1000:*:*:*:*:*:*:*:* |
alcatel | speed_touch_adsl_modem | home | cpe:2.3:h:alcatel:speed_touch_adsl_modem:home:*:*:*:*:*:*:* |