Vulnerability Description
Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtain administrative privileges by leveraging physical access or terminal access to spoof a reset code.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cobham | Aviator 200 | - |
| Cobham | Aviator 300 | - |
| Cobham | Aviator 350 | - |
| Cobham | Aviator 700D | - |
| Cobham | Explorer Bgan | - |
| Cobham | Sailor 900 Vsat | - |
| Cobham | Sailor Fleetbroadband 150 | - |
| Cobham | Sailor Fleetbroadband 250 | - |
| Cobham | Sailor Fleetbroadband 500 | - |
References
- http://www.kb.cert.org/vuls/id/602006Third Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/602006Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2013-7180?
CVE-2013-7180 is a vulnerability with a CVSS score of 7.8 (HIGH). Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtain...
How severe is CVE-2013-7180?
CVE-2013-7180 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-7180?
Check the references section above for vendor advisories and patch information. Affected products include: Cobham Aviator 200, Cobham Aviator 300, Cobham Aviator 350, Cobham Aviator 700D, Cobham Explorer Bgan.