CVE-2017-5135

Name of the Vulnerable Software and Affected Versions Technicolor DPC3928SL version D3928SL-P15-13-A386-c3420r55105-160127a

Description The issue involves an SNMP access-control bypass, which may be related to an ISP customization in some cases. This allows any SNMP community string to access the device from the Internet. Additionally, it is possible to write to the MIB due to provided write properties.

Recommendations For Technicolor DPC3928SL version D3928SL-P15-13-A386-c3420r55105-160127a, consider restricting access to the SNMP service to minimize the risk of exploitation. As a temporary workaround, limit the use of the write properties in the MIB to prevent unauthorized modifications. At the moment, there is no information about a newer version that contains a fix for this vulnerability.