Описание
The UPnP IGD implementation on the Thomson (aka Technicolor) TG585 with firmware 7.x before 7.4.3.2 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
Ссылки
- US Government Resource
- US Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 7.4 (включая)
Одновременно
cpe:2.3:a:technicolor:tg585_router_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:technicolor:tg585_router:*:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00509
Низкий
7.5 High
CVSS2
Дефекты
CWE-16
Связанные уязвимости
github
больше 3 лет назад
The UPnP IGD implementation on the Thomson (aka Technicolor) TG585 with firmware 7.x before 7.4.3.2 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
EPSS
Процентиль: 66%
0.00509
Низкий
7.5 High
CVSS2
Дефекты
CWE-16