The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite terminals has hardcoded credentials, which makes it easier for attackers to obtain unspecified login access via unknown vectors.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-255,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| harris | bgan | rf-7800b-vu204 |
| hughes_network_systems | 9450 | - |
| japan_radio | jue-250 | - |
| hughes_network_systems | 9201 | - |
| gatehouse | gatehouse | - |
| harris | bgan | rf-7800b-du204 |
| hughes_network_systems | 9502 | - |
| thuraya_telecommunications | ip | - |
| japan_radio | jue-500 | - |
| inmarsat | inmarsat | - |
The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite terminals does not require authentication for sessions on TCP port 1827, which allows remote attackers to execute arbitrary code via unspecified protocol operations.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-287,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| harris | bgan | rf-7800b-vu204 |
| hughes_network_systems | 9450 | - |
| japan_radio | jue-250 | - |
| hughes_network_systems | 9201 | - |
| gatehouse | gatehouse | - |
| harris | bgan | rf-7800b-du204 |
| hughes_network_systems | 9502 | - |
| thuraya_telecommunications | ip | - |
| japan_radio | jue-500 | - |
| inmarsat | inmarsat | - |