. . .
Updated a friend's modem as per the advice from Vodafone here:
However a before and after scan with Bitdefender home scanner still shows vulnerabilities?
Any advice on how to address these?
I am guessing it's the remote access the ISP has got ' TR-069 ' and it's nothing to worry about and working as designed
As someone who rarely works as designed, that's very reassuring, thanks!
However ... I have to be 'that guy' and say it's the first modem I have come across in my short time using this scanner - perhaps four or five others doing security checks at homes and two businesses all got the green tick - including at least one other Vodafone modem.
. . .
Does this vulnerability has a CVE or is it just the scanner saying "there is an open port here but I will make it look scarier than it is to upsell my software?"
Without a CVE it's hard to tell.
It looks like you're scanning the internal interface of your router and it has picked up that SSH is listening. SSH is used to connect to the device to be able interact with it via command line instead of via browser. This doesn't necessarily mean that the SSH port is accessible from the external interface - the interface that is connected to the wild west internet.
Might pay to scan your friends router from your residence and get him to scan yours from his. This way you'll hit the external public ip of the router. If SSH is open on the external interface and you don't use it then there should be a setting somewhere that will turn it off on the external interface.
. . .
" SSH is used to connect
to the device to be able
interact with it via
command line instead of
via browser. "
Perfect, got it, thank you.
Yet, if I'm understanding right ... SSH as a successor to CMD, isn't this more of a threat than less?
For example, by-pass all GUI checks straight to .. shell?
Or just access more info/mischief.
. . .
That app detects the same "vulnerabilities" in all my Linux PC's here. My advice? Don't listen to it, it is bullcrap. As others said also you're scanning your internal IP so you shouldn't need to worry.