CVE-2023-31808

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Sep 19, 2023

Updated: Sep 21, 2023

CWE ID 798

Summary

CVE-2023-31808 refers to a vulnerability in Technicolor TG670 10.5.N.9 devices. This issue involves multiple accounts with hard-coded passwords, one of which has administrative privileges. If Remote Administration is enabled, an attacker can gain unrestricted access over the WAN interface using these hard-coded credentials, potentially leading to significant security compromises. This vulnerability poses a serious risk to affected devices and requires immediate attention from users and network administrators to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Technicolor SA

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r9L8Ry
https://www.cve.org/CVERecord?id=CVE-2023-31808
https://nvd.nist.gov/vuln/detail/CVE-2023-31808

Back to Vulnerability Database

CVE-2023-31808

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations