Описание
An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to information disclosure.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government ResourceVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryUS Government ResourceVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до - (включая)
Одновременно
cpe:2.3:o:sierra_wireless:airlink_raven_xe_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sierra_wireless:airlink_raven_xe:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:sierra_wireless:airlink_raven_xt_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:sierra_wireless:airlink_raven_xt:-:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00384
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-522
CWE-200
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to information disclosure.
EPSS
Процентиль: 59%
0.00384
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-522
CWE-200