cbcvebase.
CVE-2019-11851
published 2022-12-26

CVE-2019-11851: The ACENet service in Sierra Wireless ALEOS before 4.4.9, 4.5.x through 4.9.x before 4.9.5, and 4.10.x through 4.13.x before 4.14.0 allows remote attackers to…

PriorityP354critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.61%
73.0th percentile
The ACENet service in Sierra Wireless ALEOS before 4.4.9, 4.5.x through 4.9.x before 4.9.5, and 4.10.x through 4.13.x before 4.14.0 allows remote attackers to execute arbitrary code via a buffer overflow.

Affected

3 ranges
VendorProductVersion rangeFixed in
sierrawirelessaleos< 4.4.94.4.9
sierrawirelessaleos>= 4.10.0 < 4.14.04.14.0
sierrawirelessaleos>= 4.5.0 < 4.9.54.9.5
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.