ByteOS Network

NVD Vulnerability Details :

CVE-2016-9497

Modified

Source-cret@cert.org

Published At-13 Jul, 2018 | 20:29

Updated At-09 Oct, 2019 | 23:20

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channel. By default, port 1953 is accessible via telnet and does not require authentication. An unauthenticated remote user can access many administrative commands via this interface, including rebooting the modem.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	8.8	HIGH	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	8.3	HIGH	AV:A/AC:L/Au:N/C:C/I:C/A:C

CPE Matches

Weaknesses

CWE ID	Type	Source
CWE-287	Primary	nvd@nist.gov
CWE-288	Secondary	cret@cert.org

References

Hyperlink	Source	Resource
https://www.kb.cert.org/vuls/id/614751	cret@cert.org	Third Party Advisory US Government Resource
https://www.securityfocus.com/bid/96244	cret@cert.org	Third Party Advisory VDB Entry

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History