Hughes Network Systems, Inc.

Notified:  March 16, 2016 Updated: February 15, 2017

Statement Date:   February 14, 2017

Status

  Affected

Vendor Statement

"The Hughes system has the ability to configure the modem which will prevent access and exploitation of the listed potential vulnerabilities. Hughes has provided service providers with documentation on the parameters and current software versions required to address these potential vulnerabilities. Customers should contact their service provider to ensure the locked down configuration is pushed to their devices."

Vendor Information

DW7000, HN7740S, and HN7000S/SM devices running software versions prior to 6.9.0.34 are vulnerable. According to the vendor, devices running 6.9.0.34 or higher can be configured to prevent exploit of the listed potential vulnerabilities.

Kontron S&T AG

Updated:  February 27, 2018

Status

  Affected

Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.