← back
CVE-2019-9529

The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default

EPSS 0.3%CWE-284
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
10 Oct 2019Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
The web application portal of the Cobham EXPLORER 710, firmware version 1.07, has no authentication by default. This could allow an unauthenticated, local attacker connected to the device to access the portal and to make any change to the device.
Affected products
Cobham plc · Explorer 710

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kb.cert.org/vuls/id/719689/