N/A

An Improper Authorization issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Several files and directories can be accessed without authentication, which may allow a remote attacker to perform sensitive functions including arbitrary file upload, file download, and device reboot.

N/A

授权机制不恰当

Sierra Wireless AirLink Raven XE和XT 授权问题漏洞

Sierra Wireless AirLink Raven XE和XT都是加拿大Sierra Wireless公司的无线网关产品。 Sierra Wireless AirLink Raven XE 4.0.14之前的版本和XT 4.0.11之前的版本中存在授权问题漏洞。远程攻击者可利用该漏洞未授权访问文件和目录，执行文件上传、下载操作和重启设备。

N/A

N/A