Lucene search
K

4 matches found

CNVD
CNVD
added 2021/01/09 12:0 a.m.3 views

Weak password vulnerability in Datang Telecom's AC centralized management platform

Ltd. is a high-tech enterprise held by the Institute of Telecommunication Science and Technology Datang Telecom Technology & Industry Group. The company was incorporated in Beijing in 1998, and in October of the same year, the shares of "Datang Telecom" were listed on the Stock Exchange of China....

6.7AI score
Exploits0
Prion
Prion
added 2019/10/31 9:15 p.m.21 views

Cross site request forgery (csrf)

An exploitable unverified password change vulnerability exists in the ACEManager upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a unverified device configuration change, resulting in an unverified change of the user password on the...

5.5CVSS6.7AI score0.16106EPSS
Exploits3References1Affected Software1
Cvelist
Cvelist
added 2019/10/31 8:24 p.m.32 views

CVE-2018-4064

An exploitable unverified password change vulnerability exists in the ACEManager upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a unverified device configuration change, resulting in an unverified change of the user password on the...

6.8AI score0.16106EPSS
Exploits3References1
Talos
Talos
added 2019/04/25 12:0 a.m.53 views

Sierra Wireless AirLink ES450 ACEManager upload.cgi Unverified Password Change Vulnerability

Summary An exploitable unverified password change vulnerability exists in the ACEManager upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a unverified device configuration change, resulting in an unverified change of the user password ...

7.1CVSS7.1AI score0.16106EPSS
Exploits3
Rows per page
Query Builder