The vulnerability of the ALEOS operating system in wireless routers from Sierra Wireless—MP70, RV50x, RV55, LX40, LX60 ES450, GX450—allows a attacker to execute a “man-in-the-middle” attack.

The vulnerability of the ALEOS operating system in wireless routers from Sierra Wireless—MP70, RV50x, RV55, LX40, LX60 ES450, and GX450—is related to deficiencies in SSL certificate validation. Exploiting this vulnerability allows a remote attacker to execute a “man-in-the-middle” attack...

The vulnerability of the ACEManager component in the ALEOS operating system of Sierra Wireless’ wireless routers—MP70, RV50x, RV55, LX40, LX60 ES450, GX450—allows a hacker to cause service interruptions.

The vulnerability of the ACEManager component in the ALEOS operating system for wireless routers from Sierra Wireless—such as the MP70, RV50x, RV55, LX40, LX60 ES450, and GX450 models—is related to pre-installed credentials due to the use of the assert function or similar operators. Exploiting th...

The vulnerability of the ACEManager component in the ALEOS operating system of Sierra Wireless’ wireless routers—MP70, RV50x, RV55, LX40, LX60 ES450, GX450—allows attackers to carry out cross-site scripting attacks.

The vulnerability of the ACEManager component in the ALEOS operating system of Sierra Wireless’ wireless routers—MP70, RV50x, RV55, LX40, LX60 ES450, GX450—is related to the lack of protective measures for website structures. Exploiting this vulnerability allows a remote attacker to perform...

Sierra Wireless AirLink ALEOS (Update B)

1. EXECUTIVE SUMMARY CVSS v3 9.1 ATTENTION: Exploitable remotely/low skill level to exploit/public exploits are available Vendor: Sierra Wireless Equipment: AirLink ALEOS Vulnerabilities: OS Command Injection, Use of Hard-coded Credentials, Unrestricted Upload of File with Dangerous Type,...