CVE-2018-19392 - Vulnerability Details - OpenCVE

Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default "admin" account), without prior knowledge of their password. All that is required is knowledge of the username and attack vector (/index.lua?pageID=Administration usernameAdmChange, passwordAdmChange1, and passwordAdmChange2 fields).

No CVSS v4.0

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cobham	Satcom Sailor 250 Satcom Sailor 250 Firmware Satcom Sailor 500 Satcom Sailor 500 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:cobham:satcom_sailor_250_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cobham:satcom_sailor_250:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:cobham:satcom_sailor_500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cobham:satcom_sailor_500:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://cyberskr.com/blog/cobham-satcom-250-500.html
https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-03-15T16:00:00

Updated: 2024-08-05T11:37:11.384Z

Reserved: 2018-11-20T00:00:00

Link: CVE-2018-19392

Vulnrichment

No data.

NVD

Status : Modified

Published: 2019-03-15T16:29:00.327

Modified: 2024-11-21T03:57:50.770

Link: CVE-2018-19392

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2019-03-15T00:00:00", "descriptions": [{"lang": "en", "value": "Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default \"admin\" account), without prior knowledge of their password. All that is required is knowledge of the username and attack vector (/index.lua?pageID=Administration usernameAdmChange, passwordAdmChange1, and passwordAdmChange2 fields)."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-03-15T15:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://cyberskr.com/blog/cobham-satcom-250-500.html"}, {"tags": ["x_refsource_MISC"], "url": "https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2018-19392", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default \"admin\" account), without prior knowledge of their password. All that is required is knowledge of the username and attack vector (/index.lua?pageID=Administration usernameAdmChange, passwordAdmChange1, and passwordAdmChange2 fields)."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://cyberskr.com/blog/cobham-satcom-250-500.html", "refsource": "MISC", "url": "https://cyberskr.com/blog/cobham-satcom-250-500.html"}, {"name": "https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4", "refsource": "MISC", "url": "https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T11:37:11.384Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://cyberskr.com/blog/cobham-satcom-250-500.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2018-19392", "datePublished": "2019-03-15T16:00:00", "dateReserved": "2018-11-20T00:00:00", "dateUpdated": "2024-08-05T11:37:11.384Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cobham:satcom_sailor_250_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7A3ECD59-D878-4E0E-97B9-07B4C40F4AA7", "versionEndExcluding": "1.25", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cobham:satcom_sailor_250:-:*:*:*:*:*:*:*", "matchCriteriaId": "B8022675-88BA-4FAA-B207-7ABE86454174", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cobham:satcom_sailor_500_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "503F48B7-7F7C-4334-87AC-08B2EEA8113D", "versionEndExcluding": "1.25", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cobham:satcom_sailor_500:-:*:*:*:*:*:*:*", "matchCriteriaId": "1A41685A-58A0-4FCC-8C92-AB3C553CE3C3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default \"admin\" account), without prior knowledge of their password. All that is required is knowledge of the username and attack vector (/index.lua?pageID=Administration usernameAdmChange, passwordAdmChange1, and passwordAdmChange2 fields)."}, {"lang": "es", "value": "Los dispositivos Cobham Satcom Sailor 250 y 500, en versiones anteriores a la 1.25, conten\u00edan una vulnerabilidad de restablecimiento de contrase\u00f1a no autenticada. Esto podr\u00eda permitir la modificaci\u00f3n de la contrase\u00f1a de cualquier cuenta de usuario (incluyendo la cuenta \"admin\" por defecto) sin conocer su contrase\u00f1a previamente. Todo lo que se requiere es conocer el nombre de usuario y el vector de ataque (los campos usernameAdmChange, passwordAdmChange1 y passwordAdmChange2 en /index.lua?pageID=Administration)."}], "id": "CVE-2018-19392", "lastModified": "2024-11-21T03:57:50.770", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-03-15T16:29:00.327", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Third Party Advisory"], "url": "https://cyberskr.com/blog/cobham-satcom-250-500.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://cyberskr.com/blog/cobham-satcom-250-500.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}