Known Vulnerabilities for products from Cobham
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Cobham".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Cobham can be found at device.report : Cobham
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-16320 | Cobham Sea Tel v170 224521 through v194 225444 devices allow attackers to obtain potentially sensitive information, such as a... | 5.3 - MEDIUM | 2019-09-15 | 2019-09-18 |
| CVE-2019-9534 | The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Development scripts left in the firmwar... | 7.8 - HIGH | 2019-10-10 | 2019-10-16 |
| CVE-2019-9533 | The root password of the Cobham EXPLORER 710 is the same for all versions of firmware up to and including v1.08. This could a... | 9.8 - CRITICAL | 2019-10-10 | 2020-10-16 |
| CVE-2019-9532 | The web application portal of the Cobham EXPLORER 710, firmware version 1.07, sends the login password in cleartext. This cou... | 7.8 - HIGH | 2019-10-10 | 2019-10-17 |
| CVE-2019-9531 | The web application portal of the Cobham EXPLORER 710, firmware version 1.07, allows unauthenticated access to port 5454. Thi... | 9.8 - CRITICAL | 2019-10-10 | 2019-10-17 |
| CVE-2019-9530 | The web root directory of the Cobham EXPLORER 710, firmware version 1.07, has no access restrictions on downloading and readi... | 5.5 - MEDIUM | 2019-10-10 | 2021-10-26 |
| CVE-2019-9529 | The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default. This could al... | 5.5 - MEDIUM | 2019-10-10 | 2019-10-21 |
| CVE-2018-19394 | Cobham Satcom Sailor 800 and 900 devices contained persistent XSS, which required administrative access to exploit. The vulne... | 4.8 - MEDIUM | 2019-03-15 | 2019-03-15 |
| CVE-2018-19393 | Cobham Satcom Sailor 800 and 900 devices contained a vulnerability that allowed for arbitrary writing of content to the syste... | 7.5 - HIGH | 2019-03-15 | 2019-10-03 |
| CVE-2018-19392 | Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could al... | 9.8 - CRITICAL | 2019-03-15 | 2020-08-24 |
| CVE-2018-19391 | Cobham Satcom Sailor 250 and 500 devices before 1.25 contained persistent XSS, which could be exploited by an unauthenticated... | 6.1 - MEDIUM | 2019-03-15 | 2019-03-15 |
| CVE-2018-5728 | Cobham Sea Tel 121 build 222701 devices allow remote attackers to obtain potentially sensitive information via a /cgi-bin/get... | 5.3 - MEDIUM | 2018-01-16 | 2018-02-02 |
| CVE-2018-5267 | Cobham Sea Tel 121 build 222701 devices allow remote attackers to bypass authentication via a direct request to MenuDealerGx.... | 9.8 - CRITICAL | 2018-01-08 | 2019-10-03 |
| CVE-2018-5266 | Cobham Sea Tel 121 build 222701 devices allow remote attackers to obtain potentially sensitive information about valid userna... | 7.5 - HIGH | 2018-01-08 | 2018-02-01 |
| CVE-2018-5071 | Persistent XSS exists in the web server on Cobham Sea Tel 116 build 222429 satellite communication system devices: remote att... | 5.4 - MEDIUM | 2018-01-08 | 2018-02-02 |
| CVE-2014-2964 | Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flr... | 6.9 - MEDIUM | 2014-08-15 | 2014-08-15 |
| CVE-2014-2942 | Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers... | 7.2 - HIGH | 2014-09-22 | 2014-09-22 |
| CVE-2014-2941 | ** DISPUTED ** Cobham Sailor 6000 satellite terminals have hardcoded Tbus 2 credentials, which allows remote attackers to obt... | 7.1 - HIGH | 2014-08-15 | 2023-11-07 |
| CVE-2014-2940 | Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the admini... | 10 - HIGH | 2014-08-15 | 2014-08-15 |
| CVE-2014-0328 | The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures, which allows attackers to execu... | 9.3 - HIGH | 2014-08-15 | 2014-08-15 |
Known software with vulnerabilities from Cobham
| Type | Vendor | Product | Version |
|---|---|---|---|
| Hardware | Cobham | Explorer 710 | - |
| Operating System | Cobham | Explorer 710 Firmware | 1.07 |
| Hardware | Cobham | Sailor 600 Vsat Ku | - |
| Operating System | Cobham | Sailor 600 Vsat Ku Firmware | - |
| Hardware | Cobham | Sailor 800 Vsat | - |
| Operating System | Cobham | Sailor 800 Vsat Firmware | - |
| Hardware | Cobham | Sailor 900 Vsat | - |
| Operating System | Cobham | Sailor 900 Vsat Firmware | 170_224521 |
| Hardware | Cobham | Sailor 900 Vsat High Power | - |
| Operating System | Cobham | Sailor 900 Vsat High Power Firmware | - |
| Operating System | Cobham | Sailor 900 Vsat System | - |
| Hardware | Cobham | Sea Tel 4009 Vsat Broadband-at-sea | - |
| Operating System | Cobham | Sea Tel 4009 Vsat Broadband-at-sea Firmware | - |
| Hardware | Cobham | Sea Tel 4009 Vsat Mk3 | - |
| Operating System | Cobham | Sea Tel 4009 Vsat Mk3 Firmware | - |
| Hardware | Cobham | Sea Tel 5012 Vsat | - |
| Operating System | Cobham | Sea Tel 5012 Vsat Firmware | - |
| Hardware | Cobham | Sea Tel 6012 Vsat C-band | - |
| Operating System | Cobham | Sea Tel 6012 Vsat C-band Firmware | - |
| Hardware | Cobham | Sea Tel 6012 Vsat Ku-band | - |