CVE-2020-10376

EUVD-2020-2831
Technicolor TC7337NET 08.89.17.23.03 devices allow remote attackers to discover passwords by sniffing the network for an "Authorization: Basic" HTTP header.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 44%
Affected Products (NVD)
VendorProductVersion
technicolortc7337net_firmware
08.89.17.23.03
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://medium.com/%40felipeagromao/remote-control-cve-2020-10376-fed7b6b934e3
https://medium.com/%40felipeagromao/remote-control-cve-2020-10376-fed7b6b934e3