CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20394

Thomson DWG849 STC0.01.16, DWG850-4 ST9C.05.25, DWG855 ST80.20.26, and TWG870 STB2.01.36 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.8%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

Products affected by CVE-2018-20394

Technicolor » Dwg849 » Version: 1.0

cpe:2.3:h:technicolor:dwg849:1.0
Technicolor » Dwg850-4 » Version: 2.1

cpe:2.3:h:technicolor:dwg850-4:2.1
Technicolor » Dwg855 » Version: 2.1

cpe:2.3:h:technicolor:dwg855:2.1
Technicolor » Twg870 » Version: 1.1

cpe:2.3:h:technicolor:twg870:1.1
Technicolor » Dwg849 Firmware » Version: stc0.01.16

cpe:2.3:o:technicolor:dwg849_firmware:stc0.01.16
Technicolor » Dwg850-4 Firmware » Version: st9c.05.25

cpe:2.3:o:technicolor:dwg850-4_firmware:st9c.05.25
Technicolor » Dwg855 Firmware » Version: st80.20.26

cpe:2.3:o:technicolor:dwg855_firmware:st80.20.26
Technicolor » Twg870 Firmware » Version: stb2.01.36

cpe:2.3:o:technicolor:twg870_firmware:stb2.01.36

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20394

Products

Pricing

Contact Us