CVE-2013-7180
Last modified
CVE-2013-7180 is a vulnerability of currently unknown severity. Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtain administrative privileges by leveraging physical access or terminal access to spoof a reset code.. EPSS estimates a 1.88% chance of exploitation in the next 30 days.
Description
Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtain administrative privileges by leveraging physical access or terminal access to spoof a reset code.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cobham | Aviator 200 | All versions |
| Cobham | Aviator 300 | All versions |
| Cobham | Aviator 350 | All versions |
| Cobham | Aviator 700d | All versions |
| Cobham | Explorer Bgan | All versions |
| Cobham | Sailor 900 Vsat | All versions |
| Cobham | Sailor Fleetbroadband 150 | All versions |
| Cobham | Sailor Fleetbroadband 250 | All versions |
| Cobham | Sailor Fleetbroadband 500 | All versions |
References
- http://www.kb.cert.org/vuls/id/602006Third Party Advisory, US Government Resource
- http://www.kb.cert.org/vuls/id/602006Third Party Advisory, US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-7180?
How severe is CVE-2013-7180?
How do I fix CVE-2013-7180?
Are you affected by CVE-2013-7180?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST