FKIE_CVE-2018-10251

Vulnerability from fkie_nvd - Published: 2018-05-04 20:29 - Updated: 2024-11-21 03:41
Severity ?
9.8 (Critical) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware before 4.4.7 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware before 4.9.3 could allow an unauthenticated remote attacker to execute arbitrary code and gain full control of an affected system, including issuing commands with root privileges.
References
cve@mitre.orghttps://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/sierra-wireless-technical-bulletin---cve-2018-10251/Mitigation, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/sierra-wireless-technical-bulletin---cve-2018-10251/Mitigation, Vendor Advisory
Impacted products
Vendor Product Version
sierrawireless aleos *
sierrawireless es440 -
sierrawireless gx400 -
sierrawireless gx440 -
sierrawireless ls300 -
sierrawireless aleos *
sierrawireless es450 -
sierrawireless gx450 -
sierrawireless mp70 -
sierrawireless mp70e -
sierrawireless rv50 -
sierrawireless rv50x -
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:sierrawireless:aleos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "233FE30D-5ACB-4932-8551-95472B1017A2",
              "versionEndExcluding": "4.4.7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:sierrawireless:es440:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E2098BAB-AF80-4C32-A5B8-FD6296C74110",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:gx400:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5CBA7B93-E1C2-41C6-B21E-6DA8B568D751",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:gx440:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "15DD2CF2-3A83-4ED7-BCD8-05F60782AE17",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:ls300:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "5F4A4F52-F99E-4F72-8A2C-8D2CC21461BD",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:sierrawireless:aleos:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E1735B2-A306-408A-A30C-7014E7C79354",
              "versionEndExcluding": "4.9.3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:sierrawireless:es450:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "524DF1AE-21F2-4AA6-99E7-6F98304FF845",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:gx450:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2C12CF71-FE0E-44EA-9F2E-7CFB42E7C216",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:mp70:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "007D4629-4BE2-4C7A-AC8B-E87739E22D12",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:mp70e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "47DBB86D-8089-4A6C-8485-5E5CB400645F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:rv50:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "54218BC7-D942-4907-8052-ECB308753162",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:sierrawireless:rv50x:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "61D3EF27-E823-4E49-BD58-D050EB02D294",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in Sierra Wireless AirLink GX400, GX440, ES440, and LS300 routers with firmware before 4.4.7 and GX450, ES450, RV50, RV50X, MP70, and MP70E routers with firmware before 4.9.3 could allow an unauthenticated remote attacker to execute arbitrary code and gain full control of an affected system, including issuing commands with root privileges."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en los routers Sierra Wireless AirLink GX400, GX440, ES440 y LS300 con firmware en versiones anteriores a la 4.4.7 y los routers GX450, ES450, RV50, RV50X, MP70 y MP70E con firmware en versiones anteriores a la 4.9.3 podr\u00eda permitir que un atacante remoto no autenticado ejecute c\u00f3digo arbitrario y obtenga el control total de un sistema afectado, incluyendo el env\u00edo de comandos con privilegios root."
    }
  ],
  "id": "CVE-2018-10251",
  "lastModified": "2024-11-21T03:41:06.687",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2018-05-04T20:29:00.517",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Mitigation",
        "Vendor Advisory"
      ],
      "url": "https://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/sierra-wireless-technical-bulletin---cve-2018-10251/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mitigation",
        "Vendor Advisory"
      ],
      "url": "https://source.sierrawireless.com/resources/airlink/software_reference_docs/technical-bulletin/sierra-wireless-technical-bulletin---cve-2018-10251/"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-862"
        },
        {
          "lang": "en",
          "value": "CWE-1188"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.