Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sierra wireless vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2018-10251
A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware prior to 4.4.7 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware prior to 4.9.3 could allow an unauthenticated remote malicious user to execute arbitrary code and ga...
Sierrawireless Aleos
890
VMScore
CVE-2017-6044
An Improper Authorization issue exists in Sierra Wireless AirLink Raven XE, all versions before 4.0.14, and AirLink Raven XT, all versions before 4.0.11. Several files and directories can be accessed without authentication, which may allow a remote malicious user to perform sensi...
Sierra Wireless Airlink Raven Xe Firmware
Sierra Wireless Airlink Raven Xt Firmware -
890
VMScore
CVE-2016-5071
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 execute the management web application as root.
Sierrawireless Aleos Firmware 4.3.2
890
VMScore
CVE-2016-5066
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
Sierrawireless Aleos Firmware 4.3.2
890
VMScore
CVE-2015-2897
Sierra Wireless ALEOS prior to 4.4.2 on AirLink ES, GX, and LS devices has hardcoded root accounts, which makes it easier for remote malicious users to obtain administrative access via a (1) SSH or (2) TELNET session.
Sierrawireless Aleos
890
VMScore
CVE-2013-2820
The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote malicious users to reprogram the firmware via a replay attack using UDP ports 17336 and 17388.
Sierrawireless Raven X Ev-do Firmware 4221 4.0.11.003
Sierrawireless Raven X Ev-do Firmware 4228 4.0.11.003
Sierrawireless Airlink Mp At&t -
Sierrawireless Airlink Mp At&t Wifi -
Sierrawireless Airlink Mp Bell -
Sierrawireless Airlink Mp Bell Wifi -
Sierrawireless Airlink Mp Row -
Sierrawireless Airlink Mp Row Wifi -
Sierrawireless Airlink Mp Sprint -
Sierrawireless Airlink Mp Sprint Wifi -
Sierrawireless Airlink Mp Telus -
Sierrawireless Airlink Mp Telus Wifi -
Sierrawireless Airlink Mp Verizon -
Sierrawireless Airlink Mp Verizon Wifi -
Sierrawireless Pinpoint X -
Sierrawireless Pinpoint Xt -
Sierrawireless Raven X -
Sierrawireless Raven X Ev-do -
Sierrawireless Raven Xe -
Sierrawireless Raven Xt -
828
VMScore
CVE-2020-3843
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.4.7, watchOS 5.3.7. A remote attacker may be able to cause unexpected system termination or corrupt kernel memory.
Apple Watchos
Apple Iphone Os
1 Article
828
VMScore
CVE-2018-4062
A hard-coded credentials vulnerability exists in the snmpd function of the Sierra Wireless AirLink ES450 FW 4.9.3. Activating snmpd outside of the WebUI can cause the activation of the hard-coded credentials, resulting in the exposure of a privileged user. An attacker can activat...
Sierrawireless Airlink Es450 Firmware 4.9.3
828
VMScore
CVE-2013-2819
The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote malicious users to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) update or (2) reprogramming action.
Sierrawireless Raven X Ev-do Firmware 4221 4.0.11.003
Sierrawireless Raven X Ev-do Firmware 4228 4.0.11.003
Sierrawireless Airlink Mp At&t -
Sierrawireless Airlink Mp At&t Wifi -
Sierrawireless Airlink Mp Bell -
Sierrawireless Airlink Mp Bell Wifi -
Sierrawireless Airlink Mp Row -
Sierrawireless Airlink Mp Row Wifi -
Sierrawireless Airlink Mp Sprint -
Sierrawireless Airlink Mp Sprint Wifi -
Sierrawireless Airlink Mp Telus -
Sierrawireless Airlink Mp Telus Wifi -
Sierrawireless Airlink Mp Verizon -
Sierrawireless Airlink Mp Verizon Wifi -
Sierrawireless Pinpoint X -
Sierrawireless Pinpoint Xt -
Sierrawireless Raven X -
Sierrawireless Raven X Ev-do -
Sierrawireless Raven Xe -
Sierrawireless Raven Xt -
801
VMScore
CVE-2018-4063
An exploitable remote code execution vulnerability exists in the upload.cgi functionality of Sierra Wireless AirLink ES450 FW 4.9.3. A specially crafted HTTP request can upload a file, resulting in executable code being uploaded, and routable, to the webserver. An attacker can ma...
Sierrawireless Airlink Es450 Firmware 4.9.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »