[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249966

 
 

909

 
 

195636

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2013-2820Date: (C)2014-01-16   (M)2023-12-22


The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to reprogram the firmware via a replay attack using UDP ports 17336 and 17388.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
http://ics-cert.us-cert.gov/advisories/ICSA-14-007-01A
http://www.sierrawireless.com/resources/support/airlink/docs/raven%20security%20vulnerability%202014-01-10.pdf

CPE    18
cpe:/h:sierrawireless:raven_xe:-
cpe:/h:sierrawireless:airlink_mp_sprint:-
cpe:/h:sierrawireless:pinpoint_xt:-
cpe:/o:sierrawireless:raven_x_ev-do_firmware:4221_4.0.11.003
...
CWE    1
CWE-287

© SecPod Technologies