CVE-2018-5266

2018-01-0803:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.8%

JSON

Cobham Sea Tel 121 build 222701 devices allow remote attackers to obtain potentially sensitive information about valid usernames by reading the loginName lines at the js/userLogin.js URI. NOTE: default passwords for the standard usernames are listed in the product’s documentation: Dealer with password seatel3, SysAdmin with password seatel2, and User with password seatel1.

References

misteralfa-hack.blogspot.cl/2018/01/seatelcobham-terminales-satelitales.html