CVE-2023-40465

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 4, 2023

Updated: Dec 8, 2023

CWE ID 121

CWE ID 787

CWE ID 122

Summary

CVE-2023-40465 is a Denial of Service vulnerability affecting several versions of ALEOS, including version 4.16.0. The issue arises from an exploitable component within the system that can be activated from the local area network, leading to a disruption of service for the captive portal. This vulnerability poses a risk for organizations utilizing ALEOS in their network infrastructure. Users are advised to apply patches or updates as soon as they become available to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Sierra Wireless ALEOS

Affected Vendors

Sierra Wireless

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sWE-jp
https://www.cve.org/CVERecord?id=CVE-2023-40465
https://nvd.nist.gov/vuln/detail/CVE-2023-40465

Back to Vulnerability Database