Vulnerability Details : CVE-2016-9497
Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channel. By default, port 1953 is accessible via telnet and does not require authentication. An unauthenticated remote user can access many administrative commands via this interface, including rebooting the modem.
Vulnerability category: BypassGain privilege
Products affected by CVE-2016-9497
- cpe:2.3:o:hughes:hn7740s_firmware:6.9.0.34:*:*:*:*:*:*:*
- cpe:2.3:o:hughes:dw7000_firmware:6.9.0.34:*:*:*:*:*:*:*
- cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.34:*:*:*:*:*:*:*
- cpe:2.3:o:hughes:hn7000sm_firmware:6.9.0.34:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2016-9497
0.20%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 59 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2016-9497
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
8.3
|
HIGH | AV:A/AC:L/Au:N/C:C/I:C/A:C |
6.5
|
10.0
|
NIST | |
8.8
|
HIGH | CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.8
|
5.9
|
NIST |
CWE ids for CVE-2016-9497
-
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.Assigned by: nvd@nist.gov (Primary)
-
A product requires authentication, but the product has an alternate path or channel that does not require authentication.Assigned by: cret@cert.org (Secondary)
References for CVE-2016-9497
-
https://www.kb.cert.org/vuls/id/614751
VU#614751 - Hughes satellite modems contain multiple vulnerabilitiesThird Party Advisory;US Government Resource
-
https://www.securityfocus.com/bid/96244
Multiple Hughes Satellite Modems VU#614751 Multiple Security VulnerabilitiesThird Party Advisory;VDB Entry
Jump to