Unrated severityNVD Advisory· Published Feb 21, 2005· Updated Apr 16, 2026

CVE-2005-0494

Description

The RgSecurity form in the HTTP server for the Thomson TCW690 cable modem running firmware 2.1 and software ST42.03.0a does not properly validate the password before performing changes, which allows remote attackers on the LAN to gain access via a direct POST request.

Affected products

Thomson/Thomson Cable Modem
cpe:2.3:h:thomson:thomson_cable_modem:tcw690:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/14353nvdVendor Advisory
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/19387nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000