CVE-2018-4063

Name of the Vulnerable Software and Affected Versions Sierra Wireless AirLink ES450 version 4.9.3 Sierra Wireless AirLink ALEOS (affected versions not specified)

Description A remote code execution issue exists in the upload.cgi functionality of Sierra Wireless AirLink devices. A crafted HTTP request can upload a file, leading to executable code being uploaded and accessible on the webserver. An authenticated attacker can trigger this issue. Recent attacks have leveraged this to deliver malware, including botnets and cryptocurrency miners. The vulnerability allows attackers to execute arbitrary code on affected routers, potentially leveraging administrative privileges. The vulnerability is actively exploited in the wild. The upload.cgi functionality is vulnerable to unrestricted file uploads.

Recommendations Sierra Wireless AirLink ES450 version 4.9.3: At the moment, there is no information about a newer version that contains a fix for this vulnerability. Sierra Wireless AirLink ALEOS: At the moment, there is no information about a newer version that contains a fix for this vulnerability.