Vulnerability Details CVE-2016-9496
Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, lacks authentication. An unauthenticated user may send an HTTP GET request to http://[ip]/com/gatewayreset or http://[ip]/cgi/reboot.bin to cause the modem to reboot.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.024
EPSS Ranking 84.6%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.1
References
Products affected by CVE-2016-9496
-
cpe:2.3:h:hughes:dw7000:-
-
cpe:2.3:h:hughes:hn7000s:-
-
cpe:2.3:h:hughes:hn7000sm:-
-
cpe:2.3:h:hughes:hn7740s:-
-
cpe:2.3:o:hughes:dw7000_firmware:6.9.0.34
-
cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.34
-
cpe:2.3:o:hughes:hn7000sm_firmware:6.9.0.34
-
cpe:2.3:o:hughes:hn7740s_firmware:6.9.0.34