CVE-2014-2940
Published Aug 15, 2014
Last updated 10 years ago
Overview
- Description
- Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by leveraging physical access or terminal access.
- Source
- cret@cert.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- <a href="http://cwe.mitre.org/data/definitions/798.html">CWE-798: Use of Hard-coded Credentials</a>
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cobham:sailor_900_firmware:1.08_mfhf:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "63D4B0A2-4B55-4262-A505-1FA798BD83AB"
},
{
"criteria": "cpe:2.3:o:cobham:sailor_900_firmware:2.11_vhf:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "89C816D4-46C7-4E22-A01C-EB3F0B5AA0E3"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cobham:sailor_900_vsat:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7704EFE7-FCF8-4109-AE65-B162604E0025"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cobham:sailor_6000_series_firmware:1.08_mfhf:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1A7D4EA-0BAB-446D-BDF9-88432B3504EA"
},
{
"criteria": "cpe:2.3:o:cobham:sailor_6000_series_firmware:2.11_vhf:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "12E7C8AE-0F1F-4EC1-8D27-52DDBC60E609"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cobham:ailor_6110_mini-c_gmdss:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "DEA4C870-472D-4CE8-BAF7-B489DA48AC4E"
},
{
"criteria": "cpe:2.3:h:cobham:sailor_6006_message_terminal:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D85C2D45-B835-4374-B3AB-B3DE311BBFFA"
},
{
"criteria": "cpe:2.3:h:cobham:sailor_6222_vhf:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "C6CDFC3D-35A7-4530-A253-62E5DF82F3CD"
},
{
"criteria": "cpe:2.3:h:cobham:sailor_6300_mf_\\/_hf:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0328B479-A9BA-49A9-B352-70D8816F4463"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]