CVE-2022-46649

CVSS V2 None CVSS V3 None
Description
Acemanager in ALEOS before version 4.16 allows a user with valid credentials to manipulate the IP logging operation to execute arbitrary shell commands on the device.
Overview
  • CVE ID
  • CVE-2022-46649
  • Assigner
  • security@sierrawireless.com
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-02-10T18:15:13
  • Last Modified Date
  • 2023-02-16T18:44:40
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:sierrawireless:aleos:*:*:*:*:*:*:*:* 1 OR 4.9.7
cpe:2.3:h:sierrawireless:es450:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:sierrawireless:gx450:-:*:*:*:*:*:*:* 0 OR
AND
cpe:2.3:o:sierrawireless:aleos:*:*:*:*:*:*:*:* 1 OR 4.16.0
cpe:2.3:h:sierrawireless:lx40:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:sierrawireless:lx60:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:sierrawireless:mp70:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:sierrawireless:rv50:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:sierrawireless:rv50x:-:*:*:*:*:*:*:* 0 OR
cpe:2.3:h:sierrawireless:rv55:-:*:*:*:*:*:*:* 0 OR
History
Created Old Value New Value Data Type Notes
2023-04-17 07:30:22 Added to TrackCVE
2023-04-17 07:30:25 Weakness Enumeration new