16 matches found
EUVD-2017-15114
Malware in sbrugna...
EUVD-2017-15112
Malware in sbrugna...
EUVD-2017-15110
Malware in sbrugna...
CVE-2017-6046
An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to...
CVE-2017-6042
A Cross-Site Request Forgery issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Affected devices do not verify if a request was intentionally sent by the logged-in user, which may allow an attacker to trick a...
CVE-2017-6042
A Cross-Site Request Forgery issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Affected devices do not verify if a request was intentionally sent by the logged-in user, which may allow an attacker to trick a...
Information disclosure
An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to...
CVE-2017-6044
An Improper Authorization issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Several files and directories can be accessed without authentication, which may allow a remote attacker to perform sensitive...
CVE-2017-6044
CVE-2017-6044 affects Sierra Wireless AirLink Raven XE (all versions before 4.0.14) and Raven XT (all versions before 4.0.11). The vulnerability stems from an improper authorization flaw that allows access to several files and directories without authentication, enabling a remote attacker to perf...
CVE-2017-6042
The CVE-2017-6042 CSRF vulnerability affects Sierra Wireless AirLink Raven XE (all versions before 4.0.14) and Raven XT (all versions before 4.0.11). The issue arises because the devices do not verify that requests originate from the logged-in user, allowing an attacker to trick a user into issui...
CVE-2017-6042
A Cross-Site Request Forgery issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Affected devices do not verify if a request was intentionally sent by the logged-in user, which may allow an attacker to trick a...
CVE-2017-6046
CVE-2017-6046 affects Sierra Wireless AirLink Raven XE (all versions before 4.0.14) and Raven XT (all versions before 4.0.11). Root cause: Insufficiently protected credentials during transmission, leading to potential information disclosure via sniffing. Impact per sources: confidentiality loss (...
Sierra Wireless AirLink Raven XE and XT Information Disclosure Vulnerability
The Sierra Wireless AirLink Raven XE and XT are both wireless gateway products from Sierra Wireless Canada. An information disclosure vulnerability exists in the Sierra Wireless AirLink Raven XE and XT. An attacker could exploit this vulnerability to obtain sensitive information...
Sierra Wireless AirLink Raven XE and XT File Download Vulnerability
The Sierra Wireless AirLink Raven XE and XT are both wireless gateway products from Sierra Wireless Canada. An input validation vulnerability exists in Sierra Wireless AirLink Raven, which could be exploited by a remote attacker to submit a special request to download arbitrary system files...
Sierra Wireless AirLink Raven XE/XT Credential Sniffing Vulnerability
The AirLink Raven XT and XE are M2M gateways from Sierra Wireless that provide remote monitoring and control of industrial applications. A credential sniffing vulnerability exists in AirLink Raven XT and XE. An attacker can exploit the vulnerability to sniff credentials and log into the system...
Sierra Wireless AirLink Raven XE/XT Unauthorized Access Vulnerability
The AirLink Raven XT and XE are M2M gateways from Sierra Wireless that provide remote monitoring and control of industrial applications. An unauthorized access vulnerability exists in AirLink Raven XT and XE. An unauthenticated, remote attacker could exploit the vulnerability to access system...