Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

ICS
ICSadded 2019/05/02 12:0 a.m.198 views

Sierra Wireless AirLink ALEOS (Update B)

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available Vendor: Sierra Wireless Equipment: AirLink ALEOS Vulnerabilities: OS Command Injection, Use of Hard-coded Credentials, Unrestricted Upload of File with Dangerous Type,...

9.3CVSS9.2AI score0.67661EPSS
Exploits21References4
0day.today
0day.todayadded 2019/04/30 12:0 a.m.74 views

Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Get_Task.cgi Information Disclosure Exploit

An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGetTask.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an information disclosure, resulting in the exposure of confidential information, including, but...

0.3AI score0.33267EPSS
Exploits4
Packet Storm
Packet Stormadded 2019/04/26 12:0 a.m.177 views

Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Set_Task.cgi Permission Assignment

Talos Vulnerability Report TALOS-2018-0756 Sierra Wireless AirLink ES450 ACEManager EmbeddedAceSetTask.cgi Permission Assignment Vulnerability April 25, 2019 CVE Number CVE-2018-4072, CVE-2018-4073 Summary An exploitable Permission Assignment vulnerability exists in the ACEManager...

0.4AI score0.36256EPSS
Exploits4
NVD
NVDadded 2016/04/21 10:59 a.m.6 views

CVE-2015-6479

ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover potentially sensitive boot-sequence information, via unspecified vectors...

4.3CVSS4.5AI score0.00019EPSS
Exploits0References1
CVE
CVEadded 2016/04/21 10:0 a.m.57 views

CVE-2015-6479

CVE-2015-6479 affects Sierra Wireless ACEmanager in ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300. It is a remote information-disclosure vulnerability that allows reading the filteredlogs.txt file, potentially exposing boot-sequence details. The issue is due to access to...

4.3CVSS4.5AI score0.00019EPSS
Exploits0References1Affected Software1
CNVD
CNVDadded 2016/04/16 12:0 a.m.2 views

Information Disclosure Vulnerability in Multiple Sierra Wireless Products

Sierra Wireless LS300, GX400/440/450 and ES440/450 running ALEOS is a set of application frameworks that run in the LS300, GX400/440/450 and ES440/450 gateway devices. Multiple Sierra Wireless filteredlogs.txt files are visible to unauthenticated users, allowing remote attackers to exploit the...

7.2AI score
Exploits0References1
Rows per page
Query Builder