CVE-2016-9495

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, uses hard coded credentials. Access to the device's default telnet port (23) can be obtained through using one of a few default credentials shared among all devices.
References
Link Resource
https://www.kb.cert.org/vuls/id/614751 Third Party Advisory US Government Resource
https://www.securityfocus.com/bid/96244 Third Party Advisory VDB Entry
https://www.kb.cert.org/vuls/id/614751 Third Party Advisory US Government Resource
https://www.securityfocus.com/bid/96244 Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:hughes:hn7740s_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:hn7740s:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:hughes:dw7000_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:dw7000:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:hn7000s:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:hughes:hn7000sm_firmware:6.9.0.34:*:*:*:*:*:*:*
cpe:2.3:h:hughes:hn7000sm:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:01

Type Values Removed Values Added
References () https://www.kb.cert.org/vuls/id/614751 - US Government Resource, Third Party Advisory () https://www.kb.cert.org/vuls/id/614751 - Third Party Advisory, US Government Resource
References () https://www.securityfocus.com/bid/96244 - Third Party Advisory, VDB Entry () https://www.securityfocus.com/bid/96244 - Third Party Advisory, VDB Entry

Information

Published : 2018-07-13 20:29

Updated : 2024-11-21 03:01


NVD link : CVE-2016-9495

Mitre link : CVE-2016-9495

CVE.ORG link : CVE-2016-9495


JSON object : View

Products Affected

hughes

  • hn7740s
  • hn7000sm_firmware
  • hn7000sm
  • dw7000_firmware
  • hn7000s_firmware
  • hn7000s
  • dw7000
  • hn7740s_firmware
CWE
CWE-798

Use of Hard-coded Credentials