CVE-2013-6034

2014-02-0405:39:08

CWE-255

[email protected]

web.nvd.nist.gov

firmware

satellite terminals

hardcoded credentials

unauthorized access

nvd

cve-2013-6034

6.8 Medium

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

65.1%

JSON

The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite terminals has hardcoded credentials, which makes it easier for attackers to obtain unspecified login access via unknown vectors.

Affected configurations

NVD

Node

gatehousegatehouseMatch-

harrisbganMatchrf-7800b-du204

harrisbganMatchrf-7800b-vu204

hughes_network_systems9201Match-

hughes_network_systems9450Match-

hughes_network_systems9502Match-

inmarsatinmarsatMatch-

japan_radiojue-250Match-

japan_radiojue-500Match-

thuraya_telecommunicationsipMatch-

CPENameOperatorVersion
gatehouse:gatehousegatehouseeq-
harris:bganharris bganeqrf-7800b-du204
harris:bganharris bganeqrf-7800b-vu204
hughes_network_systems:9201hughes network systems 9201eq-
hughes_network_systems:9450hughes network systems 9450eq-
hughes_network_systems:9502hughes network systems 9502eq-
inmarsat:inmarsatinmarsateq-
japan_radio:jue-250japan radio jue-250eq-
japan_radio:jue-500japan radio jue-500eq-
thuraya_telecommunications:ipthuraya telecommunications ipeq-

CPE	Name	Operator	Version
gatehouse:gatehouse	gatehouse	eq	-
harris:bgan	harris bgan	eq	rf-7800b-du204
harris:bgan	harris bgan	eq	rf-7800b-vu204
hughes_network_systems:9201	hughes network systems 9201	eq	-
hughes_network_systems:9450	hughes network systems 9450	eq	-
hughes_network_systems:9502	hughes network systems 9502	eq	-
inmarsat:inmarsat	inmarsat	eq	-
japan_radio:jue-250	japan radio jue-250	eq	-
japan_radio:jue-500	japan radio jue-500	eq	-
thuraya_telecommunications:ip	thuraya telecommunications ip	eq	-