CVE-2019-9534

CVE-2019-9534: The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image

Vendor Cobham Plc
Product Explorer 710
Weakness CWE-494 · Download without integrity check
Published October 10, 2019
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Development scripts left in the firmware can be used to upload a custom firmware image that the device runs. This could allow an unauthenticated, local attacker to upload their own firmware that could be used to intercept or modify traffic, spoof or intercept GPS traffic, exfiltrate private data, hide a backdoor, or cause a denial-of-service.

Key dates

02Disclosure timeline

October 10, 2019 CVE published
September 17, 2024 Record updated