Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
References
Link | Resource |
---|---|
https://carvesystems.com/sierra-wireless-2016-advisory.html | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2017-04-09 20:59
Updated : 2017-04-14 08:46
NVD link : CVE-2016-5069
Mitre link : CVE-2016-5069
JSON object : View
CWE
CWE-613
Insufficient Session Expiration
Products Affected
sierrawireless
- gx_440
- aleos_firmware