CVE-2020-11447

Published: Nov 17, 2023

Modified: Sep 4, 2024

PUBLISHED

Description

An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is intended to prove an actor's physical access to the device.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://support.bell.ca/Internet/Connection-help/Access_control_in_the_Home_Hub_modems

https://0xem.ma/posts/HH3K-CVE/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2020-11447

Description

Affected Products

References