CVE-2023-40459 PoC — Sierra Wireless ALEOS 代码问题漏洞

Source

https://github.com/majidmc2/CVE-2023-40459

Associated Vulnerability

Title:Sierra Wireless ALEOS 代码问题漏洞 (CVE-2023-40459)
Description:Sierra Wireless ALEOS（AAF）是加拿大Sierra Wireless公司的用于在Sierra Wireless AirLink网关中创建应用程序的框架。 Sierra Wireless ALEOS 4.16及之前版本存在代码问题漏洞，该漏洞源于ACEManager组件存在拒绝服务（DOS）漏洞。

Description

PoC of CVE-2023-40459 (DoS on ACEmanager)

Readme

# Intro
This repository contains PoC the **CVE-2023-40459** vulnerability. This vulnerability affects the ACEManager file in the ALEOS 4.16 and earlier versions, a product of Sierra Wireless. This attack, without any initial access rights, can lead to disruption in accessing the target device (DoS).
To use it, execute the following command:

```bash
$ python3 PoC-CVE-2023-40459.py [Address: http://target]  [Port: 9091]
```

File Snapshot


 [4.0K]  /data/pocs/05781fc494b2bf71e13ddd5d52920ef6378e0af0
├── [1.3K]  PoC-CVE-2023-40459.py
└── [ 434]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!