6 matches found
CVE-2018-20377
creationtimestamp| type| source ---|---|--- 2020-05-12 13:27:31+00:00| seen| https://t.me/Ninjutsuos/134 2020-05-12 13:27:34+00:00| seen| https://t.me/Ninjutsuos/739...
Orange Livebox ADSL modem Information Disclosure (CVE-2018-20377)
An Information Disclosure vulnerability exists in Orange Livebox ADSL modems. A remote attacker may exploit this vulnerability by sending a specially crafted request. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
CVE-2018-20377
Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...
CVE-2018-20377
Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...
CVE-2018-20377
Orange Livebox ADSL modems (e.g., Arcadyan ARV7519RW22-A-L T VR9 1.2; firmware 00.96.320S) expose Wi‑Fi credentials via unauthenticated GET /get_getnetworkconf.cgi on port 8080. The underlying issue is information disclosure where the webserver returns the SSID and Wi‑Fi password in plaintext, en...
CVE-2018-20377
Orange Livebox 00.96.320S devices allow remote attackers to discover Wi-Fi credentials via /getgetnetworkconf.cgi on port 8080, leading to full control if the admin password equals the Wi-Fi password or has the default admin value. This is related to Firmware 01.11.2017-11:43:44, Boot v0.70.03,...