Hello,
(This message was sent a couple of days ago to UPC Cablecom support, however, since I received no reply over e-mail, I am posting here)
As a cablecom user I have a question regarding the compliance of Cablecom to the latest industry standards regarding security. In particular, I noticed that the latest firmware used in Technicolor TC7200 is STD6.02.11 Thowever, it is vulnerable to the following attacks:
- KRACK (discovered a couple of weeks ago)
- EDB-ID: 40157 (you can read more about it at https://www.exploit-db.com/exploits/40157/)
Can you please tell if Cablecom considers to fix these serious vulnerabilities? If yes, is there is any estimation when this will be done? Meanwhile it is not fixed, is Cablecom accountable for any potential security related accidents happened to customers and related to the exploitation of these vulnerabilities?
Thanks in advance,
Volodymyr.