Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown

CVE-2016-5069

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
0
0
Attacker Value
Unknown

CVE-2016-5070

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
0
0
Attacker Value
Unknown

CVE-2016-5068

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests.
0
0
Attacker Value
Unknown

CVE-2016-5065

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command injection.
0
0
Attacker Value
Unknown

CVE-2016-5066

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
0
0
Attacker Value
Unknown

CVE-2016-5067

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
0
0
Attacker Value
Unknown

CVE-2016-5071

Disclosure Date: April 10, 2017 (last updated November 26, 2024)
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
0
0