CVE-2016-9494

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
ADJACENT_NETWORK
LOW
NONE
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
certccCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
hugheshn7740s_firmware
6.9.0.34
hughesdw7000_firmware
6.9.0.34
hugheshn7000s_firmware
6.9.0.34
hugheshn7000sm_firmware
6.9.0.34
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.kb.cert.org/vuls/id/614751
https://www.securityfocus.com/bid/96244
https://www.kb.cert.org/vuls/id/614751
https://www.securityfocus.com/bid/96244