6 matches found
CVE-2020-11618
THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB-T2 2.2.1 set-top boxes have their TELNET service hardcoded to start on boot, which allows an attacker on the local network to achieve root access via the TELNET protocol...
CVE-2020-11617
The RSS application on THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB-T2 2.2.1 set-top boxes doesn't validate the SSL certificates of RSS servers, which allows a man-in-the-middle attacker to modify the data delivered to the client...
CVE-2020-11617
The RSS application on THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB-T2 2.2.1 set-top boxes doesn't validate the SSL certificates of RSS servers, which allows a man-in-the-middle attacker to modify the data delivered to the client...
CVE-2020-11618
The CVE-2020-11618 entry concerns THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB‑T2 2.2.1 set‑top boxes where the TELNET service is hardcoded to start on boot. This configuration enables a local network attacker to gain root access via TELNET. Documents consistently describe the issue as har...
CVE-2020-11618
THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB-T2 2.2.1 set-top boxes have their TELNET service hardcoded to start on boot, which allows an attacker on the local network to achieve root access via the TELNET protocol...
CVE-2020-11617
The CVE-2020-11617 issue affects the RSS application on THOMSON THT741FTA 2.2.1 and Philips DTR3502BFTA DVB-T2 2.2.1 set-top boxes. The root cause is that the RSS client does not validate the SSL certificates of RSS servers, enabling a man-in-the-middle attacker to modify data delivered to the cl...