CVE-2023-31808

Name of the Vulnerable Software and Affected Versions Technicolor TG670 version 10.5.N.9

Description The issue concerns the presence of multiple accounts with hard-coded passwords in the Technicolor TG670 device. One of these accounts has administrative privileges, which can allow for unrestricted access over the WAN interface if Remote Administration is enabled. This could potentially allow a remote attacker to gain unauthorized access to protected information. The vulnerability is related to the use of hard-coded credentials, which can be exploited by an attacker to gain administrative control over the device.

Recommendations For Technicolor TG670 version 10.5.N.9, consider disabling Remote Administration to prevent potential exploitation until a patch is available. Additionally, it is recommended to check for security updates that address this issue and apply them as soon as possible. If no update is available, disabling remote administration can help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.