CVE-2023-40459 PoC — Sierra Wireless ALEOS 代码问题漏洞

Source

https://github.com/7h3w4lk3r/CVE-2023-40459

Associated Vulnerability

Title:Sierra Wireless ALEOS 代码问题漏洞 (CVE-2023-40459)
Description:Sierra Wireless ALEOS（AAF）是加拿大Sierra Wireless公司的用于在Sierra Wireless AirLink网关中创建应用程序的框架。 Sierra Wireless ALEOS 4.16及之前版本存在代码问题漏洞，该漏洞源于ACEManager组件存在拒绝服务（DOS）漏洞。

Description

CVE-2023-40459 Unauthenticated DoS PoC Exploit

Readme

# CVE-2023-40459
CVE-2023-40459 Unauthenticated DoS PoC Exploit.  
this vulnerability affects the ACEManager component of ALEOS 4.16 and earlier, a product of Sierra Wireless.  

# Usage  
`python3 PoC-CVE-2023-40459.py [Address: http://target]  [Port: 9091]`  

## Refrence  
[NVD](https://nvd.nist.gov/vuln/detail/CVE-2023-40459)  

## Article 
[Double Take Zero Day](https://7h3w4lk3r.medium.com/double-take-zero-day-cve-2023-40459-discovery-951e60e4f331)

File Snapshot


 [4.0K]  /data/pocs/edef8fa824ad8a7d3aba655f408d40f6bc4d8705
├── [1.3K]  PoC-CVE-2023-40459.py
└── [ 461]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!