ID
VAR-E-201812-0172
CVE
| cve_id: | CVE-2018-20399 | Trust: 0.3 |
TITLE
Multiple Motorola Products CVE-2018-20399 Remote Information Disclosure Vulnerability
Trust: 0.3
DESCRIPTION
Multiple Motorola products are prone to an information-disclosure vulnerability.
Attackers can exploit this issue to view sensitive information. Information obtained may lead to further attacks.
The following versions of product are vulnerable:
Motorola SBG901 SBG901-2.10.1.1-GA-00-581-NOSH
Motorola SBG941 SBG941-2.11.0.0-GA-07-624-NOSH
Motorola SVG1202 SVG1202-2.1.0.0-GA-14-LTSH
Trust: 0.3
AFFECTED PRODUCTS
| vendor: | motorola | model: | svg1202 svg1202-2.1.0.0-ga-1 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | motorola | model: | sbg941 sbg941-2.11.0.0-ga-0 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | motorola | model: | sbg901 sbg901-2.10.1.1-ga-0 | scope: | - | version: | - | Trust: 0.3 |
EXPLOIT
The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.vuldb@securityfocus.com?
Trust: 0.3
PRICE
Free
Trust: 0.3
TYPE
Design Error
Trust: 0.3
CREDITS
@Capitan_alfa
Trust: 0.3
EXTERNAL IDS
| db: | NVD | id: | CVE-2018-20399 | Trust: 0.3 |
| db: | BID | id: | 106320 | Trust: 0.3 |
REFERENCES
| url: | https://misteralfa-hack.blogspot.com/2018/12/stringbleed-y-ahora-que-passwords-leaks.html | Trust: 0.3 |
| url: | https://github.com/ezelf/sensitivesoids/blob/master/oidpassswordleaks.csv | Trust: 0.3 |
SOURCES
| db: | BID | id: | 106320 |
LAST UPDATE DATE
2022-07-27T09:37:24.290000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 106320 | date: | 2018-12-23T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 106320 | date: | 2018-12-23T00:00:00 |