Vulnerability Details CVE-2018-19393
Cobham Satcom Sailor 800 and 900 devices contained a vulnerability that allowed for arbitrary writing of content to the system's configuration file. This was exploitable via multiple attack vectors depending on the device's configuration. Further analysis also indicated this vulnerability could be leveraged to achieve a Denial of Service (DoS) condition, where the device would require a factory reset to return to normal operation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 7.8
References
Products affected by CVE-2018-19393
-
cpe:2.3:h:cobham:satcom_sailor_800:-
-
cpe:2.3:h:cobham:satcom_sailor_900:-
-
cpe:2.3:o:cobham:satcom_sailor_800_firmware:-
-
cpe:2.3:o:cobham:satcom_sailor_900_firmware:-