CVE-2016-9494

Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service.

CVSS v3 6.5 MEDIUM
CVSS v2.0 3.3 LOW

6.5^/10

CVSS v3 : MEDIUM

Vector : AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

3.3^/10

CVSS v2.0 : LOW

Vector : AV:A/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 6.5 / Impact : 2.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://www.kb.cert.org/vuls/id/614751	Third Party Advisory US Government Resource
https://www.securityfocus.com/bid/96244	Third Party Advisory VDB Entry

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:hughes:hn7740s_firmware:6.9.0.34:*:*:*:*:*:*:*

cpe:2.3:h:hughes:hn7740s:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:hughes:dw7000_firmware:6.9.0.34:*:*:*:*:*:*:*

cpe:2.3:h:hughes:dw7000:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.34:*:*:*:*:*:*:*

cpe:2.3:h:hughes:hn7000s:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:hughes:hn7000sm_firmware:6.9.0.34:*:*:*:*:*:*:*

cpe:2.3:h:hughes:hn7000sm:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-07-13 20:29

Updated : 2023-12-10 12:44

NVD link : CVE-2016-9494

Mitre link : CVE-2016-9494

CVE.ORG link : CVE-2016-9494

JSON object : View

Products Affected

hughes

hn7000s
hn7740s_firmware
hn7740s
hn7000s_firmware
hn7000sm
hn7000sm_firmware
dw7000_firmware
dw7000

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2016-9494", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2018-07-13T20:29:01.737", "references": [{"url": "https://www.kb.cert.org/vuls/id/614751", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cret@cert.org"}, {"url": "https://www.securityfocus.com/bid/96244", "tags": ["Third Party Advisory", "VDB Entry"], "source": "cret@cert.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Secondary", "source": "cret@cert.org", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, are potentially vulnerable to improper input validation. The device's advanced status web page that is linked to from the basic status web page does not appear to properly parse malformed GET requests. This may lead to a denial of service."}, {"lang": "es", "value": "Los m\u00f3dems por sat\u00e9lite de alto rendimiento de banda ancha de Hughes, en sus modelos HN7740S DW7000 HN7000S/SM, son potencialmente vulnerables a una validaci\u00f3n de entradas incorrecta. La p\u00e1gina web de estado avanzada del dispositivo que est\u00e1 enlazada desde la p\u00e1gina web de estado b\u00e1sica no parece analizar correctamente las peticiones GET mal formadas. Esto podr\u00eda conducir a una denegaci\u00f3n de servicio."}], "lastModified": "2019-10-09T23:20:32.320", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hughes:hn7740s_firmware:6.9.0.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E9029731-A889-43E7-BBC0-38E982690D57"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hughes:hn7740s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BF1B8214-EE17-49B6-8084-D9195F989961"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hughes:dw7000_firmware:6.9.0.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A98920BD-1929-419A-961A-CA0F09187693"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hughes:dw7000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6A154763-BFF7-4541-9036-34B85BA18479"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "27F4528C-7D87-4B5A-A330-A09F555AE36D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hughes:hn7000s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "91470E55-2227-489A-BEB5-86C151F32344"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:hughes:hn7000sm_firmware:6.9.0.34:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA234B78-E832-4493-BFCD-AECEAC3CCA02"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:hughes:hn7000sm:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5AAB1D14-3EA2-46C7-9010-87750F19DF24"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cret@cert.org"}