CVE-2015-6479Aleos vulnerability

3 documents3 sources
Severity
4.3MEDIUMNVD
EPSS
0.0%
top 94.72%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Sierrawireless Aleos
Timeline
PublishedApr 21
Latest updateMay 13

Description

ACEmanager in Sierra Wireless ALEOS 4.4.2 and earlier on ES440, ES450, GX400, GX440, GX450, and LS300 devices allows remote attackers to read the filteredlogs.txt file, and consequently discover potentially sensitive boot-sequence information, via unspecified vectors.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-vjr8-x7xw-4627: ACEmanager in Sierra Wireless ALEOS 42022-05-13

📋Vendor Advisories

1
CISA ICS
Sierra Wireless ACEmanager Information Exposure Vulnerability2018-08-23
CVE-2015-6479 — Sierrawireless Aleos vulnerability | cvebase