CVE: CVE-2019-9534

Export to Word

The Cobham EXPLORER 710, firmware version 1.07, does not validate its firmware image. Development scripts left in the firmware can be used to upload a custom firmware image that the device runs. This could allow an unauthenticated, local attacker to upload their own firmware that could be used to intercept or modify traffic, spoof or intercept GPS traffic, exfiltrate private data, hide a backdoor, or cause a denial-of-service.

Threat-Mapped Scoring

Score: 1.9

Priority: P3 - Important (Medium)

S9 – Sabotage of System/App
S10 – Denial of Service (+0.1 bonus)

EPSS

Score: 0.00061
Percentile: 0.19303

CVSS Scoring

CVSS v3.1 Score: 7.8

Severity: HIGH

Mapped CWE(s)

CWE-494 : Download of Code Without Integrity Check

All CAPEC(s)

CAPEC-184: Software Integrity Attack
CAPEC-185: Malicious Software Download
CAPEC-186: Malicious Software Update
CAPEC-187: Malicious Automated Software Update via Redirection
CAPEC-533: Malicious Manual Software Update
CAPEC-538: Open-Source Library Manipulation
CAPEC-657: Malicious Automated Software Update via Spoofing
CAPEC-662: Adversary in the Browser (AiTB)
CAPEC-691: Spoof Open-Source Software Metadata
CAPEC-692: Spoof Version Control System Commit Metadata
CAPEC-693: StarJacking
CAPEC-695: Repo Jacking

CAPEC(s) with Mapped TTPs

CAPEC-186: Malicious Software Update
Mapped TTPs:
- T1195.002 : Compromise Software Supply Chain
CAPEC-187: Malicious Automated Software Update via Redirection
Mapped TTPs:
- T1072 : Software Deployment Tools
CAPEC-538: Open-Source Library Manipulation
Mapped TTPs:
- T1195.001 : Compromise Software Dependencies and Development Tools
CAPEC-657: Malicious Automated Software Update via Spoofing
Mapped TTPs:
- T1072 : Software Deployment Tools
CAPEC-662: Adversary in the Browser (AiTB)
Mapped TTPs:
- T1185 : Browser Session Hijacking
CAPEC-691: Spoof Open-Source Software Metadata
Mapped TTPs:
- T1195.001 : Compromise Software Dependencies and Development Tools
- T1195.002 : Compromise Software Supply Chain
CAPEC-695: Repo Jacking
Mapped TTPs:
- T1195.001 : Compromise Software Dependencies and Development Tools

Mapped ATT&CK TTPs

T1195.002 : Compromise Software Supply Chain
Kill Chain: initial-access
T1072 : Software Deployment Tools
Kill Chain: execution
T1195.001 : Compromise Software Dependencies and Development Tools
Kill Chain: initial-access
T1072 : Software Deployment Tools
Kill Chain: execution
T1185 : Browser Session Hijacking
Kill Chain: collection
T1195.001 : Compromise Software Dependencies and Development Tools
Kill Chain: initial-access
T1195.002 : Compromise Software Supply Chain
Kill Chain: initial-access
T1195.001 : Compromise Software Dependencies and Development Tools
Kill Chain: initial-access

Malware

APTs Threat Group Associations

Campaigns

SolarWinds Compromise
C0018

Affected Products

cpe:2.3:o:cobham:explorer_710_firmware:1.07:*:*:*:*:*:*:*

← Back to Home