CVE-2018-5728

Опубликовано: 16 янв. 2018

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

Cobham Sea Tel 121 build 222701 devices allow remote attackers to obtain potentially sensitive information via a /cgi-bin/getSysStatus request, as demonstrated by the Latitude/Longitude of the ship, or satellite details.

Ссылки

http://misteralfa-hack.blogspot.cl/2018/01/seatelcobham-donde-esta-mi-barco.html
Exploit
Third Party Advisory
http://misteralfa-hack.blogspot.cl/2018/01/seatelcobham-donde-esta-mi-barco.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:cobham:seatel_121_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cobham:seatel_121:-:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00291

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-2mvq-c35w-qwcf