Design/Logic Flaw

2019-03-1516:29:00

PRIOn knowledge base

www.prio-n.com

9.6 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.4%

JSON

Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account’s password (including the default “admin” account), without prior knowledge of their password. All that is required is knowledge of the username and attack vector (/index.lua?pageID=Administration usernameAdmChange, passwordAdmChange1, and passwordAdmChange2 fields).

CPENameOperatorVersion
satcom_sailor_250_firmwarelt1.25
satcom_sailor_500_firmwarelt1.25

CPE	Name	Operator	Version
	satcom_sailor_250_firmware	lt	1.25
	satcom_sailor_500_firmware	lt	1.25

References

cyberskr.com/blog/cobham-satcom-250-500.html

gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4