3 matches found
CVE-2022-46650
CVE-2022-46650 affects ALEOS’ Acemanager prior to 4.16. Authenticated users can reconfigure the device to expose ACEManager credentials on the pre-login status page (root cause: credential disclosure on login-page flow). Public references confirm a CVSS v3.1 base score of 4.9 (Medium) with networ...
CVE-2022-46650
Acemanager in ALEOS before version 4.16 allows a user with valid credentials to reconfigure the device to expose the ACEManager credentials on the pre-login status page...
Sierra Wireless AirLink Router with ALEOS Software
1. EXECUTIVE SUMMARY CVSS v3 8.0 ATTENTION: Exploitable remotely/low attack complexity Vendor: Sierra Wireless Equipment: AirLink Router with ALEOS Software Vulnerabilities: Improper Neutralization of Argument Delimiters in a Command, Exposure of Sensitive Information to an Unauthorized Actor 2...