Critical severity9.8NVD Advisory· Published Mar 15, 2019· Updated Jun 17, 2026
CVE-2018-19392
CVE-2018-19392
Description
Cobham Satcom Sailor 250 and 500 devices before 1.25 contained an unauthenticated password reset vulnerability. This could allow modification of any user account's password (including the default "admin" account), without prior knowledge of their password. All that is required is knowledge of the username and attack vector (/index.lua?pageID=Administration usernameAdmChange, passwordAdmChange1, and passwordAdmChange2 fields).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.25
Patches
Vulnerability mechanics
References
2- cyberskr.com/blog/cobham-satcom-250-500.htmlnvdExploitThird Party Advisory
- gist.github.com/CyberSKR/2dfd5dccb20a209ec4d35b2678bac0d4nvdThird Party Advisory
News mentions
0No linked articles in our index yet.