Explorer 710 Firmware
Monthly
The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
The root password of the Cobham EXPLORER 710 is the same for all versions of firmware up to and including v1.08. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, sends the login password in cleartext. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, allows unauthenticated access to port 5454. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
The web root directory of the Cobham EXPLORER 710, firmware version 1.07, has no access restrictions on downloading and reading all files. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
The root password of the Cobham EXPLORER 710 is the same for all versions of firmware up to and including v1.08. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, sends the login password in cleartext. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, allows unauthenticated access to port 5454. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
The web root directory of the Cobham EXPLORER 710, firmware version 1.07, has no access restrictions on downloading and reading all files. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.