Lucene search
K

6 matches found

Circl
Circl
added 2020/05/12 1:27 p.m.7 views

CVE-2018-20377

creationtimestamp| type| source ---|---|--- 2020-05-12 13:27:31+00:00| seen| https://t.me/Ninjutsuos/134 2020-05-12 13:27:34+00:00| seen| https://t.me/Ninjutsuos/739...

10CVSS8.7AI score0.07721EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2018/12/26 12:0 a.m.3 views

Orange Livebox ADSL modem Information Disclosure (CVE-2018-20377)

An Information Disclosure vulnerability exists in Orange Livebox ADSL modems. A remote attacker may exploit this vulnerability by sending a specially crafted request. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...

10CVSS2.9AI score0.07721EPSS
Exploits1
NVD
NVD
added 2018/12/23 6:29 p.m.14 views

CVE-2018-20377

Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...

10CVSS9.7AI score0.07721EPSS
Exploits1References4
OSV
OSV
added 2018/12/23 6:29 p.m.5 views

CVE-2018-20377

Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...

9.8CVSS5.8AI score0.07721EPSS
Exploits1References4
CVE
CVE
added 2018/12/23 6:0 p.m.56 views

CVE-2018-20377

Orange Livebox ADSL modems (e.g., Arcadyan ARV7519RW22-A-L T VR9 1.2; firmware 00.96.320S) expose Wi‑Fi credentials via unauthenticated GET /get_getnetworkconf.cgi on port 8080. The underlying issue is information disclosure where the webserver returns the SSID and Wi‑Fi password in plaintext, en...

10CVSS9.6AI score0.07721EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2018/12/23 6:0 p.m.22 views

CVE-2018-20377

Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...

9.7AI score0.07721EPSS
Exploits1References4
Rows per page
Query Builder