// For flags

CVE-2019-11851

 

Severity Score

9.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The ACENet service in Sierra Wireless ALEOS before 4.4.9, 4.5.x through 4.9.x before 4.9.5, and 4.10.x through 4.13.x before 4.14.0 allows remote attackers to execute arbitrary code via a buffer overflow.

El servicio ACENet en Sierra Wireless ALEOS anteriores a 4.4.9, 4.5.x a 4.9.x anteriores a 4.9.5 y 4.10.x a 4.13.x anteriores a 4.14.0 permite a atacantes remotos ejecutar código arbitrario mediante un desbordamiento de búfer.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-05-09 CVE Reserved
  • 2022-12-26 CVE Published
  • 2024-08-04 CVE Updated
  • 2024-10-28 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.10.0 < 4.14.0
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.10.0 < 4.14.0"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Lx40
Search vendor "Sierrawireless" for product "Lx40"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.10.0 < 4.14.0
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.10.0 < 4.14.0"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Lx60
Search vendor "Sierrawireless" for product "Lx60"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.10.0 < 4.14.0
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.10.0 < 4.14.0"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Mp70
Search vendor "Sierrawireless" for product "Mp70"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.10.0 < 4.14.0
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.10.0 < 4.14.0"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Mp70e
Search vendor "Sierrawireless" for product "Mp70e"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.10.0 < 4.14.0
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.10.0 < 4.14.0"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Rv50
Search vendor "Sierrawireless" for product "Rv50"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.10.0 < 4.14.0
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.10.0 < 4.14.0"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Rv50x
Search vendor "Sierrawireless" for product "Rv50x"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.9.0 < 4.9.5
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.9.0 < 4.9.5"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Es450
Search vendor "Sierrawireless" for product "Es450"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
>= 4.9.0 < 4.9.5
Search vendor "Sierrawireless" for product "Aleos" and version " >= 4.9.0 < 4.9.5"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Gx450
Search vendor "Sierrawireless" for product "Gx450"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
< 4.4.9
Search vendor "Sierrawireless" for product "Aleos" and version " < 4.4.9"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Es440
Search vendor "Sierrawireless" for product "Es440"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
< 4.4.9
Search vendor "Sierrawireless" for product "Aleos" and version " < 4.4.9"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Gx400
Search vendor "Sierrawireless" for product "Gx400"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
< 4.4.9
Search vendor "Sierrawireless" for product "Aleos" and version " < 4.4.9"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Gx440
Search vendor "Sierrawireless" for product "Gx440"
--
Safe
Sierrawireless
Search vendor "Sierrawireless"
Aleos
Search vendor "Sierrawireless" for product "Aleos"
< 4.4.9
Search vendor "Sierrawireless" for product "Aleos" and version " < 4.4.9"
-
Affected
in Sierrawireless
Search vendor "Sierrawireless"
Ls300
Search vendor "Sierrawireless" for product "Ls300"
--
Safe