CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 2CVE-2018-4063 – Sierra Wireless AirLink ES450 ACEManager upload.cgi Remote Code Execution
https://notcve.org/view.php?id=CVE-2018-4063
26 Apr 2019 — An exploitable remote code execution vulnerability exists in the upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can upload a file, resulting in executable code being uploaded, and routable, to the webserver. An attacker can make an authenticated HTTP request to trigger this vulnerability. Existe una vulnerabilidad explotable de ejecución remota de código en la funcionalidad upload.cgi de Sierra Wireless AirLink ES450 FW 4.9.3. Una petición HTTP especialm... • https://packetstorm.news/files/id/152648 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 3CVE-2018-4062 – Sierra Wireless AirLink ES450 SNMPD Hard-Coded Credentials
https://notcve.org/view.php?id=CVE-2018-4062
26 Apr 2019 — A hard-coded credentials vulnerability exists in the snmpd function of the Sierra Wireless AirLink ES450 FW 4.9.3. Activating snmpd outside of the WebUI can cause the activation of the hard-coded credentials, resulting in the exposure of a privileged user. An attacker can activate snmpd without any configuration changes to trigger this vulnerability. Existe una vulnerabilidad de credenciales embebidas en la función snmpd del Sierra Wireless AirLink ES450 FW 4.9.3. La activación de snmpd fuera de la interfaz... • https://packetstorm.news/files/id/152647 • CWE-798: Use of Hard-coded Credentials •
CVSS: 9.0EPSS: 0%CPEs: 20EXPL: 0CVE-2017-15043
https://notcve.org/view.php?id=CVE-2017-15043
04 May 2018 — A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware before 4.4.5 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware before 4.9 could allow an authenticated remote attacker to execute arbitrary code and gain full control of an affected system, including issuing commands with root privileges. This vulnerability is due to insufficient input validation on user-controlled input in an HTTP request to the targeted device. An attacker in possession of ro... • https://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/swi-psa-2018-003-technical-bulletin-reaper • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 0%CPEs: 12EXPL: 0CVE-2018-10251
https://notcve.org/view.php?id=CVE-2018-10251
04 May 2018 — A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware before 4.4.7 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware before 4.9.3 could allow an unauthenticated remote attacker to execute arbitrary code and gain full control of an affected system, including issuing commands with root privileges. Una vulnerabilidad en los routers Sierra Wireless AirLink GX400, GX440, ES440 y LS300 con firmware en versiones anteriores a la 4.4.7 y los routers GX450,... • https://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/sierra-wireless-technical-bulletin---cve-2018-10251 • CWE-862: Missing Authorization CWE-1188: Initialization of a Resource with an Insecure Default •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-9247
https://notcve.org/view.php?id=CVE-2017-9247
02 Aug 2017 — Multiple unquoted service path vulnerabilities in Sierra Wireless Windows Mobile Broadband Driver Package (MBDP) with build ID < 4657 allows local users to launch processes with elevated privileges. Múltiples vulnerabilidades ruta de servicio sin entrecomillar en Mobile Broadband Driver Package (MBDP) de Sierra Wireless Windows con ID de compilación menor a 4657, permite a los usuarios locales iniciar procesos con privilegios elevados. • http://support.lenovo.com/us/en/product_security/LEN-12739 • CWE-428: Unquoted Search Path or Element •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2016-5066
https://notcve.org/view.php?id=CVE-2016-5066
10 Apr 2017 — Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user. Dispositivos Sierra Wireless GX 440 con firmware ALEOS 4.3.2 tiene contraseñas débiles para admin, rauser, sconsole y usuario. • https://carvesystems.com/sierra-wireless-2016-advisory.html • CWE-255: Credentials Management Errors •
CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 1CVE-2016-5067
https://notcve.org/view.php?id=CVE-2016-5067
10 Apr 2017 — Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection. Dispositivos Sierra Wireless GX 440 con firmware ALEOS 4.3.2 permiten inyección de comandos Hayes AT. • https://carvesystems.com/sierra-wireless-2016-advisory.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2016-5070
https://notcve.org/view.php?id=CVE-2016-5070
10 Apr 2017 — Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext. Dispositivos Sierra Wireless GX 440 con firmware ALEOS 4.3.2 almacenan contraseñas en texto plano. • https://carvesystems.com/sierra-wireless-2016-advisory.html • CWE-255: Credentials Management Errors •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 1CVE-2016-5071
https://notcve.org/view.php?id=CVE-2016-5071
10 Apr 2017 — Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root. Dispositivos Sierra Wireless GX 440 con firmware ALEOS 4.3.2 ejecutan la aplicación web de administración como root. • https://carvesystems.com/sierra-wireless-2016-advisory.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 1CVE-2016-5065
https://notcve.org/view.php?id=CVE-2016-5065
10 Apr 2017 — Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command injection. Los dispositivos Sierra Wireless GX 440 con firmware ALEOS 4.3.2 permiten la inyección de comandos Embedded_Ace_Set_Task.cgi. • https://carvesystems.com/sierra-wireless-2016-advisory.html • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •