Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-46650

Acemanager in ALEOS before version 4.16 allows a user with valid credentials to reconfigure the device to expose the ACEManager credentials on the pre-login status page.

CVE

Get updates on this product

Email required! Email not valid!

Subscribe

By submitting this form, you consent to receive commercial electronic messages from Sierra Wireless Inc. such as newsletters, event invitations, promotional and educational content, product update, transaction-related emails, and customer service emails in accordance with our privacy policy.

You have been successfully subscribed to receive updates on this product. To access your subscription click here.

Related news

CVE-2023-2187: Industrial and Manufacturing CVEs: Addressing the SCADA in the Room

On Triangle MicroWorks' SCADA Data Gateway version <= v5.01.03, an unauthenticated attacker can send broadcast events to any user via the WebMonitor.An unauthenticated user can use this vulnerability to forcefully log out of any currently logged-in user by sending a "password change event". Furthermore, an attacker could use this vulnerability to spam the logged-in user with false events.

Critical Infrastructure at Risk from New Vulnerabilities Found in Wireless IIoT Devices

A set of 38 security vulnerabilities has been uncovered in wireless industrial internet of things (IIoT) devices from four different vendors that could pose a significant attack surface for threat actors looking to exploit operational technology (OT) environments. "Threat actors can exploit vulnerabilities in Wireless IIoT devices to gain initial access to internal OT networks," Israeli

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907