Vulnerabilities > Cobham > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-10 | CVE-2019-9530 | Unspecified vulnerability in Cobham Explorer 710 Firmware 1.07 The web root directory of the Cobham EXPLORER 710, firmware version 1.07, has no access restrictions on downloading and reading all files. | 4.9 |
| 2019-10-10 | CVE-2019-9529 | Missing Authentication for Critical Function vulnerability in Cobham Explorer 710 Firmware 1.07 The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default. | 4.9 |
| 2019-09-15 | CVE-2019-16320 | Information Exposure vulnerability in Cobham products Cobham Sea Tel v170 224521 through v194 225444 devices allow attackers to obtain potentially sensitive information, such as a vessel's latitude and longitude, via the public SNMP community. | 5.0 |
| 2019-03-15 | CVE-2018-19392 | Improper Authentication vulnerability in Cobham products Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. | 5.0 |
| 2019-03-15 | CVE-2018-19391 | Cross-site Scripting vulnerability in Cobham products Cobham Satcom Sailor 250 and 500 devices before 1.25 contained persistent XSS, which could be exploited by an unauthenticated threat actor via the /index.lua?pageID=Phone%20book name field. | 4.3 |
| 2018-01-16 | CVE-2018-5728 | Information Exposure vulnerability in Cobham Seatel 121 Firmware Cobham Sea Tel 121 build 222701 devices allow remote attackers to obtain potentially sensitive information via a /cgi-bin/getSysStatus request, as demonstrated by the Latitude/Longitude of the ship, or satellite details. | 5.0 |
| 2018-01-08 | CVE-2018-5266 | Information Exposure vulnerability in Cobham SEA TEL 121 Firmware 222701 Cobham Sea Tel 121 build 222701 devices allow remote attackers to obtain potentially sensitive information about valid usernames by reading the loginName lines at the js/userLogin.js URI. | 5.0 |
| 2014-08-15 | CVE-2014-2964 | Unspecified vulnerability in Cobham Aviator 700D and Aviator 700E Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial line. local cobham | 6.9 |