Tc7200 Firmware
by Technicolor
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2014-1677 | Hig | 0.53 | 7.5 | 0.18 | Apr 3, 2017 | Technicolor TC7200 with firmware STD6.01.12 could allow remote attackers to obtain sensitive information. | ||
| CVE-2014-0621 | 0.03 | — | 0.01 | Jan 8, 2014 | Multiple cross-site request forgery (CSRF) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to hijack the authentication of administrators for requests that (1) perform a factory reset via a request to goform/system/factory, (2) disable… | |||
| CVE-2014-0620 | 0.03 | — | 0.01 | Jan 8, 2014 | Multiple cross-site scripting (XSS) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to inject arbitrary web script or HTML via the (1) ADDNewDomain parameter to parental/website-filters.asp or (2) VmTracerouteHost parameter to… |
- risk 0.53cvss 7.5epss 0.18
Technicolor TC7200 with firmware STD6.01.12 could allow remote attackers to obtain sensitive information.
- CVE-2014-0621Jan 8, 2014risk 0.03cvss —epss 0.01
Multiple cross-site request forgery (CSRF) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to hijack the authentication of administrators for requests that (1) perform a factory reset via a request to goform/system/factory, (2) disable…
- CVE-2014-0620Jan 8, 2014risk 0.03cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to inject arbitrary web script or HTML via the (1) ADDNewDomain parameter to parental/website-filters.asp or (2) VmTracerouteHost parameter to…