QwikSec

Security Database

CVE

CWE

Training

CVE-2018-20398

Published: Dec 23, 2018

Modified: Sep 16, 2024

PUBLISHED

Description

Skyworth CM5100 V1.1.0, CM5100-440 V1.2.1, CM5100-511 4.1.0.14, CM5100-GHD00 V1.2.2, and CM5100.g2 4.1.0.17 devices allow remote attackers to discover credentials via iso.3.6.1.4.1.4491.2.4.1.1.6.1.1.0 and iso.3.6.1.4.1.4491.2.4.1.1.6.1.2.0 SNMP requests.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/ezelf/sensitivesOids/blob/master/oidpassswordleaks.csv

x_refsource_MISC

https://misteralfa-hack.blogspot.com/2018/12/stringbleed-y-ahora-que-passwords-leaks.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.