Insecure Password Recovery in Cobham Satellite Communication Devices

Insecure Password Recovery in Cobham Satellite Communication Devices

CVE-2013-7180 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:N/A:N

Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtain administrative privileges by leveraging physical access or terminal access to spoof a reset code.

Learn more about our Physical Security Assessment.