CVE-2018-20438
CRITICALTechnicolor TC7110.AR STD3.38.03 - Unauthenticated Wi-Fi Credential Exposure via SNMP OID Requests
Title source: llmDescription
Technicolor TC7110.AR STD3.38.03 devices allow remote attackers to discover Wi-Fi credentials via iso.3.6.1.4.1.2863.205.10.1.30.4.1.14.1.3.32 and iso.3.6.1.4.1.2863.205.10.1.30.4.2.4.1.2.32 SNMP requests.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://misteralfa-hack.blogspot.com/2018/12/technicolor-passwords-wireless-via-snmp.html
Scores
CVSS v3
9.8
EPSS
0.0137
EPSS Percentile
68.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-522
Status
published
Products (1)
technicolor/tc7110.ar_firmware
Published
Dec 25, 2018
Tracked Since
Feb 18, 2026