N/A

An information disclosure vulnerability exists in the ACEManager authentication functionality of Sierra Wireless AirLink ES450 FW 4.9.3. The ACEManager authentication functionality is done in plaintext XML to the web server. An attacker can listen to network traffic upstream from the device to capitalize on this vulnerability.

N/A

N/A

Sierra Wireless AirLink ES450 信息泄露漏洞

Sierra Wireless AirLink ES450是加拿大Sierra Wireless公司的一款蜂窝网络调制解调器设备。 使用4.9.3版本版本固件的Sierra Wireless AirLink ES450中的ACEManager身份验证功能存在安全漏洞。攻击者可利用该漏洞嗅探明文形式的凭证

N/A

N/A