CVE-2016-9494

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation, potentially leading to denial of service

EPSS 0.8%CWE-20

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.8%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

13 Jul 2018Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service.

Affected products

Hughes Satellite Modem · DW7000 Hughes Satellite Modem · HN7000S/SM Hughes Satellite Modem · HN7740S

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.kb.cert.org/vuls/id/614751 https://www.securityfocus.com/bid/96244