Follow

Nearly 19,500 Orange LiveBox ADSL modems are leaking WiFi credentials:

zdnet.com/article/over-19000-o

– vulnerability (CVE-2018-20377) allows a remote attacker to obtain the WiFi password and SSID for the modem's internal WiFi network just by accessing the modem's get_getnetworkconf.cgi
– nearly all modems are located in France and Spain
– see also github.com/zadewg/LIVEBOX-0DAY

@infosechandbook @valere faille connue depuis 2015 quand même 🤔 🤪 ah Orange et sa réactivité 🤪 🤔 enfin son absence de réactivité 😂

Sign in to participate in the conversation
Mastodon

mastodon.at is a microblogging site that federates with most instances on the Fediverse.