{"vulnerability": "cve-2017-18373", "sightings": [{"uuid": "f3869f51-5d8d-41b9-8ae2-4aba06ff4d87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-18373", "type": "seen", "source": "https://t.me/VulnerabilityNews/6493", "content": "The Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a command injection vulnerability in the Time Setting function, which is only accessible by an authenticated user. The vulnerability is in the tools_time.asp page and can be exploited through the uiViewSNTPServer parameter. Authentication can be achieved by exploiting CVE-2017-18373.\nPublished at: May 02, 2019 at 07:29PM\nView on website", "creation_timestamp": "2019-05-02T20:40:09.000000Z"}, {"uuid": "26604e59-a380-454b-b18c-19066b4f8ef3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-18373", "type": "seen", "source": "https://t.me/cibsecurity/4078", "content": "ATENTION\u203c New - CVE-2017-18373\n\nThe Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has three user accounts with default passwords, including two hardcoded service accounts: one with the username true and password true, and another with the username user3 and and a long password consisting of a repetition of the string 0123456789. These accounts can be used to login to the web interface, exploit authenticated command injections, and change router settings for malicious purposes.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-05-02T20:26:34.000000Z"}, {"uuid": "26d01273-84f3-4c7e-a6a8-6e61cd6a28fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-18373", "type": "seen", "source": "https://t.me/cibsecurity/4079", "content": "ATENTION\u203c New - CVE-2017-18372\n\nThe Billion 5200W-T TCLinux Fw $7.3.8.0 v008 130603 router distributed by TrueOnline has a command injection vulnerability in the Time Setting function, which is only accessible by an authenticated user. The vulnerability is in the tools_time.asp page and can be exploited through the uiViewSNTPServer parameter. Authentication can be achieved by exploiting CVE-2017-18373.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-05-02T20:26:35.000000Z"}]}