Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

ICS
ICSadded 2019/05/02 12:0 a.m.198 views

Sierra Wireless AirLink ALEOS (Update B)

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available Vendor: Sierra Wireless Equipment: AirLink ALEOS Vulnerabilities: OS Command Injection, Use of Hard-coded Credentials, Unrestricted Upload of File with Dangerous Type,...

9.3CVSS9.2AI score0.67661EPSS
Exploits21References4
CNVD
CNVDadded 2018/05/08 12:0 a.m.2 views

Arbitrary Code Execution Vulnerability in Multiple Sierra Wireless Products (CNVD-2018-09151)

Sierra Wireless AirLink GX400 and others are router products from Sierra Wireless Canada. A security vulnerability exists in several Sierra Wireless products. An attacker could exploit the vulnerability to execute arbitrary code and take full control of the affected system including issuing...

10CVSS8AI score0.0008EPSS
Exploits0References1
CNVD
CNVDadded 2018/05/08 12:0 a.m.1 views

Arbitrary Code Execution Vulnerability in Multiple Sierra Wireless Products

Sierra Wireless AirLink GX400 and others are router products from Sierra Wireless Canada. A security vulnerability exists in a number of Sierra Wireless products that stems from a program's failure to perform adequate input validation of user-controlled input in HTTP requests. An attacker could...

9CVSS7.9AI score0.00013EPSS
Exploits0References1
NVD
NVDadded 2016/04/21 10:59 a.m.6 views

CVE-2015-6479

ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover potentially sensitive boot-sequence information, via unspecified vectors...

4.3CVSS4.5AI score0.00019EPSS
Exploits0References1
CVE
CVEadded 2016/04/21 10:0 a.m.58 views

CVE-2015-6479

CVE-2015-6479 affects Sierra Wireless ACEmanager in ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300. It is a remote information-disclosure vulnerability that allows reading the filteredlogs.txt file, potentially exposing boot-sequence details. The issue is due to access to...

4.3CVSS4.5AI score0.00019EPSS
Exploits0References1Affected Software1
CNVD
CNVDadded 2016/04/16 12:0 a.m.2 views

Information Disclosure Vulnerability in Multiple Sierra Wireless Products

Sierra Wireless LS300, GX400/440/450 and ES440/450 running ALEOS is a set of application frameworks that run in the LS300, GX400/440/450 and ES440/450 gateway devices. Multiple Sierra Wireless filteredlogs.txt files are visible to unauthenticated users, allowing remote attackers to exploit the...

7.2AI score
Exploits0References1
Rows per page
Query Builder