CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

207 matches found

RedhatCVE•added 2026/01/09 11:57 a.m.•11 views

CVE-2018-4068

An exploitable information disclosure vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A HTTP request can result in disclosure of the default configuration for the device. An attacker can send an unauthenticated HTTP request to trigger this...

5.3CVSS6.6AI score0.11396EPSS

Exploits2References1

RedhatCVE•added 2026/01/09 11:56 a.m.•5 views

CVE-2018-4061

An exploitable command injection vulnerability exists in the ACEManager iplogging.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can inject arbitrary commands, resulting in arbitrary command execution. An attacker can send an authenticated HTTP reque...

9CVSS7.2AI score0.19488EPSS

Exploits3References1

RedhatCVE•added 2026/01/09 11:56 a.m.•6 views

CVE-2018-4070

An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGetTask.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. This binary does not have any restricted configuration settings, so once the MSCIID is discovered, any authenticated user can send...

8.8CVSS6.5AI score0.18287EPSS

Exploits3References1

RedhatCVE•added 2026/01/09 11:55 a.m.•4 views

CVE-2018-4065

An exploitable cross-site scripting vulnerability exists in the ACEManager pingresult.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP ping request can cause reflected javascript code execution, resulting in the execution of javascript code running on the...

6.1CVSS6.3AI score0.05233EPSS

Exploits3References1

RedhatCVE•added 2026/01/09 11:55 a.m.•6 views

CVE-2018-4067

An exploitable information disclosure vulnerability exists in the ACEManager templateload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a information leak, resulting in the disclosure of internal paths and files. An attacker can make an...

6.5CVSS6.2AI score0.04132EPSS

Exploits3References1