Vulnerability in Cobham Aviator_700d

CVE-2014-2964

Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the (1) debug, (2) prod, (3) do160, and (4) flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial lin…

EPSS: 0.005 (38.2th percentile) — read the EPSS interpretation.

Affected products

Public proof-of-concept exploits

References

  • cret@cert.org (US Government Resource, x_refsource_CERT-VN, Third Party Advisory, third-party-advisory)

Frequently asked questions

What is CVE-2014-2964?
CVE-2014-2964 is a vulnerability in Cobham Aviator_700d. Published 2014-08-15.
Is CVE-2014-2964 known to be exploited?
1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.