CVE-2022-46649

Acemanager in ALEOS before version 4.16 allows a user with valid credentials to manipulate the IP logging operation to execute arbitrary shell commands on the device.

CVE-2019-11862

The SSH service on ALEOS before 4.12.0, 4.9.5, 4.4.9 allows traffic proxying.

CVE-2023-40464

Several versions ofALEOS, including ALEOS 4.16.0, use a hardcoded SSL certificate andprivate key. An attacker with access to these items could potentiallyperform a man in the middle attack between the ACEManager clientand ACEManager server.

CVE-2023-40461

The ACEManagercomponent of ALEOS 4.16 and earlier allows an authenticated userwith Administrator privileges to access a file upload field whichdoes not fully validate the file name, creating a Stored Cross-SiteScripting condition.

CVE-2023-40463

When configured indebugging mode by an authenticated user with administrativeprivileges, ALEOS 4.16 and earlier store the SHA512 hash of the commonroot password for that version in a directory accessible to a userwith root privileges or equivalent access.

CVE-2023-40465

Several versions ofALEOS, including ALEOS 4.16.0, include an opensource third-partycomponent which can be exploited from the local area network,resulting in a Denial of Service condition for the captive portal.