CVE-2020-11101

Опубликовано: 26 дек. 2022

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Sierra Wireless AirLink Mobility Manager (AMM) before 2.17 mishandles sessions and thus an unauthenticated attacker can obtain a login session with administrator privileges.

Ссылки

https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2020-007---amm-unauthenticated-login.ashx
Vendor Advisory
https://www.sierrawireless.com/company/security/
Vendor Advisory
https://source.sierrawireless.com/-/media/support_downloads/security-bulletins/pdf/swi-psa-2020-007---amm-unauthenticated-login.ashx
Vendor Advisory
https://www.sierrawireless.com/company/security/
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sierrawireless:airlink_mobility_manager:*:*:*:*:*:*:*:*

Версия до 2.17 (исключая)

EPSS

Процентиль: 23%

0.00077

Низкий

9.8 Critical

CVSS3

Дефекты

NVD-CWE-noinfo

CWE-287

Связанные уязвимости

GHSA-m55w-4rm6-mmm8