sierrawireless security advisories
5 threat alerts tracking vulnerabilities and security advisories that affect sierrawireless products.
Vulnios monitors sierrawireless CVE feeds, vendor advisories, CISA KEV listings, and exploit-prediction data continuously. Each alert below is enriched with severity, exploitation status, affected products, and a remediation path. Use this page to scan recent sierrawireless security news in one place, or click into an individual alert for full detail.
Critical Vulnerability: CVE-2016-5066 — sierrawireless — aleos_firmware, gx_440
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 have weak passwords for admin, rauser, sconsole, and user.
criticalCVE-2016-5066Critical Vulnerability: CVE-2016-5070 — sierrawireless — aleos_firmware, gx_440
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 store passwords in cleartext.
criticalCVE-2016-5070Critical Vulnerability: CVE-2016-5068 — sierrawireless — aleos_firmware, gx_440
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 do not require authentication for Embedded_Ace_Get_Task.cgi requests.
criticalCVE-2016-5068Critical Vulnerability: CVE-2016-5069 — sierrawireless — aleos_firmware, gx_440
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.
criticalCVE-2016-5069Critical Vulnerability: CVE-2016-5065 — sierrawireless — aleos_firmware, gx_440
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Embedded_Ace_Set_Task.cgi command injection.
criticalCVE-2016-5065
Track sierrawireless exposure across your environment
Vulnios automatically cross-references your asset inventory against new sierrawireless CVEs and surfaces only what affects you. No more sifting manually — actionable findings only.
Start a free scan