Vulnerability Details : CVE-2014-2964
Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial line.
Products affected by CVE-2014-2964
- cpe:2.3:h:cobham:aviator_700d:-:*:*:*:*:*:*:*
- cpe:2.3:h:cobham:aviator_700e:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-2964
0.26%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 64 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-2964
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.9
|
MEDIUM | AV:L/AC:M/Au:N/C:C/I:C/A:C |
3.4
|
10.0
|
NIST |
References for CVE-2014-2964
-
http://www.kb.cert.org/vuls/id/882207
VU#882207 - Cobham Aviator satellite terminals contain multiple vulnerabilitiesThird Party Advisory;US Government Resource
Jump to