Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

18 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-12937

Malware in sbrugna...

4.7CVSS4.9AI score0.0024EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/05/22 6:58 a.m.3 views

CVE-2018-20439

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests...

9.8CVSS7.3AI score0.00372EPSS
Exploits0References1
CNVD
CNVDadded 2018/12/27 12:0 a.m.2 views

Unspecified Vulnerability in Technicolor DPC3928SL

The Technicolor DPC3928SL is a cable modem from the French Technicolor group. A security vulnerability exists in the Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a version. An attacker could exploit the vulnerability to obtain Wi-Fi credentials by sending an SNMP request...

9.8CVSS6.8AI score0.00372EPSS
Exploits0References1
Prion
Prionadded 2018/12/25 3:29 p.m.12 views

Code injection

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests...

5CVSS9.4AI score0.00372EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2018/12/25 3:29 p.m.12 views

CVE-2018-20439

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests...

9.8CVSS9.6AI score0.00372EPSS
Exploits0References1
CVE
CVEadded 2018/12/25 3:0 p.m.44 views

CVE-2018-20439

The CVE concerns Technicolor DPC3928SL devices (D3928SL-PSIP-13-A010-c3420r55105-170214a). Affected component is SNMP handling, where remote attackers can obtain Wi‑Fi credentials by sending specific SNMP requests (SNMP OIDs iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2...

9.8CVSS9.4AI score0.00372EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2018/12/25 3:0 p.m.11 views

CVE-2018-20439

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.4413.2.2.2.1.5.4.1.14.1.3.10001 and 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.3.4.1.2.10001 SNMP requests...

9.6AI score0.00372EPSS
Exploits0References1
CNVD
CNVDadded 2018/12/25 12:0 a.m.1 views

Technicolor DPC3928SL Cross Site Scripting Vulnerability

The Technicolor DPC3928SL is a cable modem from the French Technicolor group. A cross-site scripting vulnerability exists in the Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a version. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML with the...

4.7CVSS6AI score0.0024EPSS
Exploits1References1
OSV
OSVadded 2018/12/23 9:29 p.m.1 views

CVE-2018-20393

Technicolor CGA0111 CGA0111E-ES-13-E23E-c8000r5712-170217-0829-TRU, CWA0101 CWA0101E-A23E-c7000r5712-170315-SKC, DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-170214a, TC7110.AR STD3.38.03, TC7110.B STC8.62.02, TC7110.D STDB.79.02, TC7200.d1I TC7200.d1IE-N23E-c7000r5712-170406-HAT, and TC7200.TH2v2...

9.8CVSS5.8AI score0.00629EPSS
Exploits1References2
OSV
OSVadded 2018/12/23 9:29 p.m.0 views

CVE-2018-20379

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a devices allow XSS via a Cross Protocol Injection attack with setSSID of 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.10001...

4.7CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2018/12/23 9:29 p.m.6 views

CVE-2018-20379

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a devices allow XSS via a Cross Protocol Injection attack with setSSID of 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.10001...

4.7CVSS4.9AI score0.0024EPSS
Exploits1References1
Prion
Prionadded 2018/12/23 9:29 p.m.5 views

Cross site scripting

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a devices allow XSS via a Cross Protocol Injection attack with setSSID of 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.10001...

2.6CVSS4.9AI score0.0024EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/12/23 9:0 p.m.39 views

CVE-2018-20379

CVE-2018-20379 affects Technicolor DPC3928SL devices (model D3928SL-PSIP-13-A010-c3420r55105-160428a). The vulnerability is a cross-site scripting (XSS) flaw exposed through a cross protocol injection path involving the setSSID field identified by the OID 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.100...

4.7CVSS4.8AI score0.0024EPSS
Exploits1References1Affected Software1
CVE
CVEadded 2018/12/23 9:0 p.m.52 views

CVE-2018-20393

The CVE-2018-20393 entry applies to Technicolor devices (e.g., CGA0111 variants, CWA0101, DPC3928SL, TC7110, TC7200) and describes a credential-disclosure flaw exploitable via SNMP. Remote attackers can retrieve credentials by querying specific SNMP OIDs (iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and .....

9.8CVSS9.4AI score0.00629EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2018/12/23 9:0 p.m.11 views

CVE-2018-20379

Technicolor DPC3928SL D3928SL-PSIP-13-A010-c3420r55105-160428a devices allow XSS via a Cross Protocol Injection attack with setSSID of 1.3.6.1.4.1.4413.2.2.2.1.18.1.2.1.1.3.10001...

4.9AI score0.0024EPSS
Exploits1References1
OSV
OSVadded 2017/04/27 3:59 p.m.1 views

CVE-2017-5135

Certain Technicolor devices have an SNMP access-control bypass, possibly involving an ISP customization in some cases. The Technicolor formerly Cisco DPC3928SL with firmware D3928SL-P15-13-A386-c3420r55105-160127a could be reached by any SNMP community string from the Internet; also, you can writ...

9.1CVSS5.8AI score
Exploits0References3
CVE
CVEadded 2017/04/27 3:0 p.m.81 views

CVE-2017-5135

CVE-2017-5135 describes an SNMP access-control bypass on certain Technicolor (former Cisco) devices, notably the DPC3928SL. The vulnerability allows authentication with any SNMP community string, potentially granting full remote read/write access via MIB write capabilities (Stringbleed). Concrete...

9.1CVSS9.2AI score0.22367EPSS
Exploits3References3Affected Software1
seebug.org
seebug.orgadded 2017/04/27 12:0 a.m.87 views

SNMP Incorrect Access Control Vulnerability (CVE 2017-5135) (StringBleed)

In DEFCON 24 IoT Village i gave a talk about the danger of SNMP write properties enabled devices in the IoT, police patrols, ambulances and other in the “critical mission vehicles” were affected in that research. In December 2016 with a colleague from Argentina Ezequiel Fernandez we decided to...

7.5AI score
Exploits0
Rows per page
Query Builder