Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sierra wireless vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2020-8948
The Sierra Wireless Windows Mobile Broadband Driver Packages (MBDP) before build 5043 allows an unprivileged user to overwrite arbitrary files in arbitrary folders using hard links. An unprivileged user could leverage this vulnerability to execute arbitrary code with system privi...
Sierrawireless Mobile Broadband Driver Package
5
CVSSv2
CVE-2017-6046
An Insufficiently Protected Credentials issue exists in Sierra Wireless AirLink Raven XE, all versions before 4.0.14, and AirLink Raven XT, all versions before 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could le...
Sierra Wireless Airlink Raven Xe Firmware
Sierra Wireless Airlink Raven Xt Firmware -
NA
CVE-2023-38321
OpenNDS, as used in Sierra Wireless ALEOS prior to 4.17.0.12 and other products, allows remote malicious users to cause a denial of service (NULL pointer dereference, daemon crash, and Captive Portal outage) via a GET request to /opennds_auth/ that lacks a custom query string par...
Sierrawireless Aleos
10
CVSSv2
CVE-2018-10251
A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware prior to 4.4.7 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware prior to 4.9.3 could allow an unauthenticated remote malicious user to execute arbitrary code and ga...
Sierrawireless Aleos
10
CVSSv2
CVE-2017-6044
An Improper Authorization issue exists in Sierra Wireless AirLink Raven XE, all versions before 4.0.14, and AirLink Raven XT, all versions before 4.0.11. Several files and directories can be accessed without authentication, which may allow a remote malicious user to perform sensi...
Sierra Wireless Airlink Raven Xe Firmware
Sierra Wireless Airlink Raven Xt Firmware -
6.8
CVSSv2
CVE-2017-6042
A Cross-Site Request Forgery issue exists in Sierra Wireless AirLink Raven XE, all versions before 4.0.14, and AirLink Raven XT, all versions before 4.0.11. Affected devices do not verify if a request was intentionally sent by the logged-in user, which may allow an malicious user...
Sierra Wireless Airlink Raven Xe Firmware
Sierra Wireless Airlink Raven Xt Firmware -
9
CVSSv2
CVE-2017-15043
A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware prior to 4.4.5 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware prior to 4.9 could allow an authenticated remote malicious user to execute arbitrary code and gain f...
Sierrawireless Gx440 Firmware
Sierrawireless Es440 Firmware
Sierrawireless Ls300 Firmware
Sierrawireless Gx400 Firmware
Sierrawireless Es450 Firmware
Sierrawireless Rv50 Firmware
Sierrawireless Rv50x Firmware
Sierrawireless Mp70 Firmware
Sierrawireless Mp70e Firmware
Sierrawireless Gx450 Firmware
4.3
CVSSv2
CVE-2018-5383
Bluetooth firmware or operating system software drivers in macOS versions prior to 10.13, High Sierra and iOS versions prior to 11.4, and Android versions before the 2018-06-05 patch may not sufficiently validate elliptic curve parameters used to generate public keys during a Dif...
Google Android 8.0
Google Android 8.1
Google Android 6.0.1
Google Android 7.0
Google Android 7.1.1
Google Android 7.1.2
Google Android 6.0
Apple Iphone Os
Apple Mac Os X
2 Github repositories
1 Article
4.8
CVSSv2
CVE-2019-9506
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffi...
Google Android -
Apple Mac Os X 10.12.6
Apple Mac Os X 10.14.5
Apple Watchos 5.3
Apple Iphone Os 12.4
Apple Mac Os X 10.13.6
Apple Tvos 12.4
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Redhat Mrg Realtime 2.0
Redhat Virtualization Host Eus 4.2
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Aus 7.5
Redhat Enterprise Linux Eus 7.6
Redhat Enterprise Linux Eus 7.7
Redhat Enterprise Linux Eus 8.1
Redhat Enterprise Linux Eus 8.2
Redhat Enterprise Linux Eus 8.4
5 Github repositories
2 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5