Details of VAR-201401-0053

ID

VAR-201401-0053

CVE

CVE-2013-2820

TITLE

AirLink Raven X EV-DO Replay Security Bypass Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2014-00188 // BID: 64704

DESCRIPTION

The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to reprogram the firmware via a replay attack using UDP ports 17336 and 17388. AirLink Raven X EV-DO is a small 3G network smart modem. Allows remote attackers to exploit vulnerabilities to send specially crafted requests to the 17336/UDP and 17388/UDP ports to reprogram the device firmware image, bypassing authentication and unauthorized access to the device. Successful exploits may allow attackers to bypass authentication through a replay attack and perform unauthorized actions

Trust: 2.52

sources: NVD: CVE-2013-2820 // JVNDB: JVNDB-2014-001185 // CNVD: CNVD-2014-00188 // BID: 64704 // VULHUB: VHN-62822

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2014-00188

AFFECTED PRODUCTS

vendor:	sierrawireless	model:	raven x ev-do	scope:	eq	version:	4221_4.0.11.003	Trust: 1.6
vendor:	sierrawireless	model:	raven x ev-do	scope:	eq	version:	4228_4.0.11.003	Trust: 1.6
vendor:	sierrawireless	model:	airlink mp verizon wifi	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp verizon	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp bell wifi	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp row wifi	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp row	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	raven x	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	raven xt	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp bell	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	raven xe	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp sprint	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp telus wifi	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp sprint wifi	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	pinpoint x	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	raven x ev-do	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	pinpoint xt	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp telus	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp at\&t	scope:	eq	version:	-	Trust: 1.0
vendor:	sierrawireless	model:	airlink mp at\&t wifi	scope:	eq	version:	-	Trust: 1.0
vendor:	sierra	model:	airlink mp at&t	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp at&t wifi	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp bell	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp bell wifi	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp row	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp row wifi	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp sprint	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp sprint wifi	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp telus	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp telus wifi	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp verizon	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	airlink mp verizon wifi	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	pinpooint x	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	pinpooint xt	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	raven x	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	raven x ev-do	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	raven x ev-do	scope:	eq	version:	4221_4.0.11.003	Trust: 0.8
vendor:	sierra	model:	raven x ev-do	scope:	eq	version:	4228_4.0.11.003	Trust: 0.8
vendor:	sierra	model:	raven xe	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	raven xt	scope:	-	version:	-	Trust: 0.8
vendor:	sierra	model:	wireless airlink raven ev-do 4221 4.0.11.003	scope:	eq	version:	x	Trust: 0.6
vendor:	sierra	model:	wireless airlink raven ev-do 4228 4.0.11.003	scope:	eq	version:	x	Trust: 0.6

sources: CNVD: CNVD-2014-00188 // JVNDB: JVNDB-2014-001185 // CNNVD: CNNVD-201401-180 // NVD: CVE-2013-2820

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2013-2820
value:	HIGH
Trust: 1.0
NVD:	CVE-2013-2820
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2014-00188
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201401-180
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-62822
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2013-2820
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2014-00188
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-62822
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2014-00188 // VULHUB: VHN-62822 // JVNDB: JVNDB-2014-001185 // CNNVD: CNNVD-201401-180 // NVD: CVE-2013-2820

PROBLEMTYPE DATA

problemtype:

CWE-287

Trust: 1.9

sources: VULHUB: VHN-62822 // JVNDB: JVNDB-2014-001185 // NVD: CVE-2013-2820

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201401-180

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201401-180

CONFIGURATIONS

sources: JVNDB: JVNDB-2014-001185

PATCH

title:	AirLink RavenSecurity Vulnerability	url:	http://www.sierrawireless.com/resources/support/airlink/docs/raven%20security%20vulnerability%202014-01-10.pdf	Trust: 0.8
title:	AirLink Raven X EV-DO Replay Security Vulnerability Vulnerability Patch	url:	https://www.cnvd.org.cn/patchInfo/show/42228	Trust: 0.6

sources: CNVD: CNVD-2014-00188 // JVNDB: JVNDB-2014-001185

EXTERNAL IDS

db:	NVD	id:	CVE-2013-2820	Trust: 3.4
db:	ICS CERT	id:	ICSA-14-007-01A	Trust: 2.5
db:	BID	id:	64704	Trust: 1.6
db:	JVNDB	id:	JVNDB-2014-001185	Trust: 0.8
db:	CNNVD	id:	CNNVD-201401-180	Trust: 0.7
db:	ICS CERT	id:	ICSA-14-007-01	Trust: 0.6
db:	CNVD	id:	CNVD-2014-00188	Trust: 0.6
db:	VULHUB	id:	VHN-62822	Trust: 0.1

sources: CNVD: CNVD-2014-00188 // VULHUB: VHN-62822 // BID: 64704 // JVNDB: JVNDB-2014-001185 // CNNVD: CNNVD-201401-180 // NVD: CVE-2013-2820

REFERENCES

url:	http://ics-cert.us-cert.gov/advisories/icsa-14-007-01a	Trust: 2.5
url:	http://www.sierrawireless.com/resources/support/airlink/docs/raven%20security%20vulnerability%202014-01-10.pdf	Trust: 1.7
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-2820	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-2820	Trust: 0.8
url:	http://ics-cert.us-cert.gov/advisories/icsa-14-007-01	Trust: 0.6
url:	http://www.securityfocus.com/bid/64704	Trust: 0.6

sources: CNVD: CNVD-2014-00188 // VULHUB: VHN-62822 // JVNDB: JVNDB-2014-001185 // CNNVD: CNNVD-201401-180 // NVD: CVE-2013-2820

CREDITS

Cimation

Trust: 0.9

sources: BID: 64704 // CNNVD: CNNVD-201401-180

SOURCES

db:	CNVD	id:	CNVD-2014-00188
db:	VULHUB	id:	VHN-62822
db:	BID	id:	64704
db:	JVNDB	id:	JVNDB-2014-001185
db:	CNNVD	id:	CNNVD-201401-180
db:	NVD	id:	CVE-2013-2820

LAST UPDATE DATE

2025-04-11T23:04:02.395000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2014-00188	date:	2014-01-10T00:00:00
db:	VULHUB	id:	VHN-62822	date:	2014-01-16T00:00:00
db:	BID	id:	64704	date:	2014-07-25T00:18:00
db:	JVNDB	id:	JVNDB-2014-001185	date:	2014-01-20T00:00:00
db:	CNNVD	id:	CNNVD-201401-180	date:	2014-01-20T00:00:00
db:	NVD	id:	CVE-2013-2820	date:	2025-04-11T00:51:21.963

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2014-00188	date:	2014-01-10T00:00:00
db:	VULHUB	id:	VHN-62822	date:	2014-01-15T00:00:00
db:	BID	id:	64704	date:	2014-01-07T00:00:00
db:	JVNDB	id:	JVNDB-2014-001185	date:	2014-01-20T00:00:00
db:	CNNVD	id:	CNNVD-201401-180	date:	2014-01-14T00:00:00
db:	NVD	id:	CVE-2013-2820	date:	2014-01-15T16:08:18.110