Vulnerabilities > Cobham > Satcom Sailor 900 Firmware

DATE CVE VULNERABILITY TITLE RISK
2019-03-15 CVE-2018-19394 Cross-site Scripting vulnerability in Cobham products
Cobham Satcom Sailor 800 and 900 devices contained persistent XSS, which required administrative access to exploit.
network
low complexity
cobham CWE-79
4.8
4.8
2019-03-15 CVE-2018-19393 Incorrect Permission Assignment for Critical Resource vulnerability in Cobham products
Cobham Satcom Sailor 800 and 900 devices contained a vulnerability that allowed for arbitrary writing of content to the system's configuration file.
network
low complexity
cobham CWE-732
7.5
7.5