PT-2019-10791 · Sierra Wireless · Acemanager+1

Published

2019-10-31

Updated

2019-11-06

CVE-2018-4064

CVSS v3.1

7.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:L

Name of the Vulnerable Software and Affected Versions Sierra Wireless AirLink ES450 FW version 4.9.3

Description The issue allows for an unverified password change through a specially crafted HTTP request to the upload.cgi functionality in ACEManager. This can result in an unauthorized change of the user password on the device. An attacker can exploit this by making an authenticated HTTP request.

Recommendations For Sierra Wireless AirLink ES450 FW version 4.9.3, consider restricting access to the upload.cgi functionality in ACEManager until a fix is available. As a temporary workaround, monitor device configuration changes closely to detect any unauthorized password changes.

Exploit

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2018-4064

Affected Products

Acemanager

Sierra Wireless Airlink Es450

PT-2019-10791 · Sierra Wireless · Acemanager+1

CVE-2018-4064

Weakness Enumeration

Related Identifiers

Affected Products

References · 3