CVE-2014-2940
Summary
| CVE | CVE-2014-2940 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2014-08-15 11:15:00 UTC |
| Updated | 2014-08-15 17:21:00 UTC |
| Description | Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by leveraging physical access or terminal access. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cobham | Ailor 6110 Mini-c Gmdss | - | All | All | All |
| Hardware | Cobham | Ailor 6110 Mini-c Gmdss | - | All | All | All |
| Operating System | Cobham | Sailor 6000 Series Firmware | 1.08_mfhf | All | All | All |
| Operating System | Cobham | Sailor 6000 Series Firmware | 2.11_vhf | All | All | All |
| Operating System | Cobham | Sailor 6000 Series Firmware | 1.08_mfhf | All | All | All |
| Operating System | Cobham | Sailor 6000 Series Firmware | 2.11_vhf | All | All | All |
| Hardware | Cobham | Sailor 6006 Message Terminal | - | All | All | All |
| Hardware | Cobham | Sailor 6006 Message Terminal | - | All | All | All |
| Hardware | Cobham | Sailor 6222 Vhf | - | All | All | All |
| Hardware | Cobham | Sailor 6222 Vhf | - | All | All | All |
| Hardware | Cobham | Sailor 6300 Mf / Hf | - | All | All | All |
| Hardware | Cobham | Sailor 6300 Mf / Hf | - | All | All | All |
| Hardware | Cobham | Sailor 6300 Mf / Hf | - | All | All | All |
| Operating System | Cobham | Sailor 900 Firmware | 1.08_mfhf | All | All | All |
| Operating System | Cobham | Sailor 900 Firmware | 2.11_vhf | All | All | All |
| Operating System | Cobham | Sailor 900 Firmware | 1.08_mfhf | All | All | All |
| Operating System | Cobham | Sailor 900 Firmware | 2.11_vhf | All | All | All |
| Hardware | Cobham | Sailor 900 Vsat | - | All | All | All |
| Hardware | Cobham | Sailor 900 Vsat | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Vulnerability Note VU#460687 - Cobham Sailor satellite terminals contain hardcoded credentials | CERT-VN | www.kb.cert.org | Third Party Advisory, US Government Resource |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.