Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8
CVE-2016-5065
- EPSS 0.66%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command injection.
- EPSS 0.03%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
- EPSS 0.53%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
9.8
CVE-2016-5068
- EPSS 0.04%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests.
9.8
CVE-2016-5069
- EPSS 0.03%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
9.8
CVE-2016-5070
- EPSS 0.02%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
- EPSS 0.03%
- Published 10.04.2017 03:59:01
- Last modified 20.04.2025 01:37:25
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
1