Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:56 p.m.8 views

CVE-2018-4066

An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an authenticated user to perform privileged requests unknowingly, resulting in unauthenticated requests being...

8.8CVSS6.6AI score0.02188EPSS
Exploits3References1
NVD
NVD
added 2019/05/06 7:29 p.m.31 views

CVE-2018-4066

An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an authenticated user to perform privileged requests unknowingly, resulting in unauthenticated requests being...

8.8CVSS8.6AI score0.02188EPSS
Exploits3References4
CVE
CVE
added 2019/05/06 6:38 p.m.65 views

CVE-2018-4066

Sierra Wireless AirLink ES450 FW 4.9.3 exposes a CSRF vulnerability in ACEManager (CVE-2018-4066) that can force an authenticated user to perform privileged actions, effectively triggering authenticated-page requests on behalf of the user. The issue is documented across TI sources (Talos TALOS-20...

8.8CVSS8.4AI score0.02188EPSS
Exploits3References4Affected Software1
Cvelist
Cvelist
added 2019/05/06 6:38 p.m.31 views

CVE-2018-4066

An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an authenticated user to perform privileged requests unknowingly, resulting in unauthenticated requests being...

8.6AI score0.02188EPSS
Exploits3References4
0day.today
0day.today
added 2019/04/29 12:0 a.m.80 views

Sierra Wireless AirLink ES450 ACEManager Cross Site Request Forgery Vulnerability

An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an authenticated user to perform privileged requests unknowingly, resulting in unauthenticated requests being...

0.8AI score0.02188EPSS
Exploits3
Packet Storm
Packet Storm
added 2019/04/26 12:0 a.m.73 views

Sierra Wireless AirLink ES450 ACEManager Cross Site Request Forgery

Talos Vulnerability Report TALOS-2018-0751 Sierra Wireless AirLink ES450 ACEManager Cross-Site Request Forgery Vulnerability April 25, 2019 CVE Number CVE-2018-4066 Summary An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink...

0.3AI score0.02188EPSS
Exploits3
Rows per page
Query Builder