PT-2019-9802 · Cobham · Cobham Satcom Sailor 800+1

Cyberskr

Published

2019-03-15

Updated

2019-10-03

CVE-2018-19393

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cobham Satcom Sailor 800 and 900 devices (affected versions not specified)

Description The issue allows for arbitrary writing of content to the system's configuration file, which can be exploited through multiple attack vectors depending on the device's configuration. This can also lead to a Denial of Service (DoS) condition, requiring a factory reset to restore normal operation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Permission

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732

Related Identifiers

CVE-2018-19393

Affected Products

Cobham Satcom Sailor 800

Cobham Satcom Sailor 900

PT-2019-9802 · Cobham · Cobham Satcom Sailor 800+1

CVE-2018-19393

Weakness Enumeration

Related Identifiers

Affected Products

References · 3