CVSS: 8.8EPSS: 43%CPEs: 2EXPL: 1CVE-2018-4072
https://notcve.org/view.php?id=CVE-2018-4072
06 May 2019 — An exploitable Permission Assignment vulnerability exists in the ACEManager EmbeddedAceSet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. The EmbeddedAceSet_Task.cgi executable is used to change MSCII configuration values within the configuration manager of the AirLink ES450. This binary does not have any restricted configuration settings, so once the MSCIID is discovered, any authenticated user can send configuration changes using the /cgi-bin/Embedded_Ace_Set_Task.cgi endpoint. Existe u... • https://talosintelligence.com/vulnerability_reports/TALOS-2018-0756 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4067 – Sierra Wireless AirLink ES450 ACEManager template_load.cgi Information Disclosure
https://notcve.org/view.php?id=CVE-2018-4067
27 Apr 2019 — An exploitable information disclosure vulnerability exists in the ACEManager template_load.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a information leak, resulting in the disclosure of internal paths and files. An attacker can make an authenticated HTTP request to trigger this vulnerability. Existe una vulnerabilidad de divulgación de información explotable en la funcionalidad template_load.cgi de ACEManager de Sierra Wireless AirLink ES450 FW 4.9... • https://packetstorm.news/files/id/152652 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4069 – Sierra Wireless AirLink ES450 ACEManager Information Exposure
https://notcve.org/view.php?id=CVE-2018-4069
27 Apr 2019 — An information disclosure vulnerability exists in the ACEManager authentication functionality of Sierra Wireless AirLink ES450 FW 4.9.3. The ACEManager authentication functionality is done in plaintext XML to the web server. An attacker can listen to network traffic upstream from the device to capitalize on this vulnerability. Existe una vulnerabilidad de divulgación de información en la funcionalidad de autenticación ACEManager de Sierra Wireless AirLink ES450 FW 4.9.3. La funcionalidad de autenticación de... • https://packetstorm.news/files/id/152654 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 71%CPEs: 2EXPL: 2CVE-2018-4066 – Sierra Wireless AirLink ES450 ACEManager Cross Site Request Forgery
https://notcve.org/view.php?id=CVE-2018-4066
26 Apr 2019 — An exploitable cross-site request forgery vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause an authenticated user to perform privileged requests unknowingly, resulting in unauthenticated requests being requested through an authenticated user. An attacker can get an authenticated user to request authenticated pages on the attacker's behalf to trigger this vulnerability. En la funcionalidad del ACEManager de Sierra Wirele... • https://packetstorm.news/files/id/152651 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4065 – Sierra Wireless AirLink ES450 ACEManager ping_result.cgi Cross Site Scripting
https://notcve.org/view.php?id=CVE-2018-4065
26 Apr 2019 — An exploitable cross-site scripting vulnerability exists in the ACEManager ping_result.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP ping request can cause reflected javascript code execution, resulting in the execution of javascript code running on the victim's browser. An attacker can get a victim to click a link, or embedded URL, that redirects to the reflected cross-site scripting vulnerability to trigger this vulnerability. Existe una vulnerabilidad de Corss-Site... • https://packetstorm.news/files/id/152650 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4061 – Sierra Wireless AirLink ES450 ACEManager iplogging.cgi Command Injection
https://notcve.org/view.php?id=CVE-2018-4061
26 Apr 2019 — An exploitable command injection vulnerability exists in the ACEManager iplogging.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can inject arbitrary commands, resulting in arbitrary command execution. An attacker can send an authenticated HTTP request to trigger this vulnerability. Existe una vulnerabilidad de inyección de comandos explotable en la funcionalidad iplogging.cgi de ACEManager de Sierra Wireless AirLink ES450 FW 4.9.3. Una petición HTTP especialme... • https://packetstorm.news/files/id/152646 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.8EPSS: 40%CPEs: 2EXPL: 2CVE-2018-4070 – Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Get_Task.cgi Information Disclosure
https://notcve.org/view.php?id=CVE-2018-4070
26 Apr 2019 — An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. This binary does not have any restricted configuration settings, so once the MSCIID is discovered, any authenticated user can send configuration changes using the /cgi-bin/Embedded_Ace_Get_Task.cgi endpoint. Existe una vulnerabilidad explotable de divulgación de información en la funcionalidad de ACEManager EmbeddedAceGet_Task.cgi de Sierra Wireless Ai... • https://packetstorm.news/files/id/152655 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4064 – Sierra Wireless AirLink ES450 ACEManager upload.cgi Unverified Password Change
https://notcve.org/view.php?id=CVE-2018-4064
26 Apr 2019 — An exploitable unverified password change vulnerability exists in the ACEManager upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can cause a unverified device configuration change, resulting in an unverified change of the user password on the device. An attacker can make an authenticated HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de cambio de contraseña no comprobado explotable en la funcionalidad ACEManager upload.cgi de S... • https://packetstorm.news/files/id/152649 • CWE-287: Improper Authentication •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1CVE-2018-4068 – Sierra Wireless AirLink ES450 ACEManager Information Disclosure
https://notcve.org/view.php?id=CVE-2018-4068
26 Apr 2019 — An exploitable information disclosure vulnerability exists in the ACEManager functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A HTTP request can result in disclosure of the default configuration for the device. An attacker can send an unauthenticated HTTP request to trigger this vulnerability. Se presenta una vulnerabilidad de Divulgación de Información explotable en la funcionalidad ACEManager de Sierra Wireless AirLink ES450 FW versión 4.9.3. Una solicitud HTTP puede dar conllevar a la divulgación... • https://packetstorm.news/files/id/152653 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 40%CPEs: 2EXPL: 2CVE-2018-4071 – Sierra Wireless AirLink ES450 ACEManager Embedded_Ace_Get_Task.cgi Information Disclosure
https://notcve.org/view.php?id=CVE-2018-4071
26 Apr 2019 — An exploitable Information Disclosure vulnerability exists in the ACEManager EmbeddedAceGet_Task.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. The EmbeddedAceTLGet_Task.cgi executable is used to retrieve MSCII configuration values within the configuration manager of the AirLink ES450. This binary does not have any restricted configuration settings, so once the MSCIID is discovered, any authenticated user can send configuration changes using the /cgi-bin/Embedded_Ace_TLGet_Task.cgi endpoint. E... • https://packetstorm.news/files/id/152655 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •