Default Authentication Bypass in Cobham EXPLORER 710 Web Application Portal

Default Authentication Bypass in Cobham EXPLORER 710 Web Application Portal

CVE-2019-9529 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default. This could allow an unauthenticated, local attacker connected to the device to access the portal and to make any change to the device.

Learn more about our Web App Pen Testing.