VDB

CVE-2023-31808

CVE-2023-31808 PUBLISHED

The Technicolor TG670 DSL Gateway Router includes a hard-coded service account that allows for authentication over services on the WAN interface, using HTTP, SSH, or TELNET. The authenticated user can use it to gain full administrative control of the router. A hard-coded password refers to an unchangeable password that is stored within a device or an application. This type of password carries a significant risk as it can be exploited by malware or hackers to gain unauthorized access to devices and systems, enabling them to engage in malicious activities. In certain cases, a hard-coded account may possess administrative privileges, granting complete control over a device through an account that cannot be modified or deactivated. Recently, it was uncovered that the Technicolor TG670 DSL Gateway Router with firmware version 10.5.N.9. contains more than one hard-coded service account. These particular accounts allow full administrative access to the device via the WAN interface. If Remote Administration is enabled, the device can be remotely accessed from an external network interface, such as the Internet. This account seems to have full administrative access to modify the device settings. Additionally, it appears that this account is not documented and cannot be disabled or removed from the device.

EPSS 0.15% · 35.7th percentile

Risk Scores

EPSS Score
0.15%
35.7th percentile

Timeline

  • Jul 12, 2023 CVE Published
  • Jul 13, 2023 PoC Published
  • Sep 19, 2023 PoC Published
  • Sep 20, 2023 EPSS Score
  • Oct 22, 2023 EPSS Score
  • Nov 23, 2023 EPSS Score
  • Dec 26, 2023 EPSS Score
  • Jan 27, 2024 EPSS Score
  • Feb 28, 2024 EPSS Score
  • Mar 31, 2024 EPSS Score
  • May 2, 2024 EPSS Score
  • Jun 3, 2024 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›