CVE-2013-7180

Cobham SAILOR 900 VSAT; SAILOR FleetBroadBand 150, 250, and 500; EXPLORER BGAN; and AVIATOR 200, 300, 350, and 700D devices do not properly restrict password recovery, which allows attackers to obtain administrative privileges by leveraging physical access or terminal access to spoof a reset code.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:N/A:N
certccCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 46%
VendorProductVersion
cobhamaviator_200
-
cobhamaviator_300
-
cobhamaviator_350
-
cobhamaviator_700d
-
cobhamexplorer_bgan
-
cobhamsailor_900_vsat
-
cobhamsailor_fleetbroadband_150
-
cobhamsailor_fleetbroadband_250
-
cobhamsailor_fleetbroadband_500
-
𝑥
= Vulnerable software versions
References
http://www.kb.cert.org/vuls/id/602006
http://www.kb.cert.org/vuls/id/602006