Nearly 19,500 Orange LiveBox ADSL modems are leaking WiFi credentials:
– vulnerability (CVE-2018-20377) allows a remote attacker to obtain the WiFi password and SSID for the modem's internal WiFi network just by accessing the modem's get_getnetworkconf.cgi
– nearly all modems are located in France and Spain
– see also https://github.com/zadewg/LIVEBOX-0DAY
mastodon.at is a microblogging site that federates with most instances on the Fediverse.