Vulnerabilities > Sierrawireless > Aleos > 4.10.1

DATE CVE VULNERABILITY TITLE RISK
2020-08-21 CVE-2019-11850 Out-of-bounds Write vulnerability in Sierrawireless Aleos
A stack overflow vulnerabiltity exist in the AT command interface of ALEOS before 4.11.0.
local
low complexity
sierrawireless CWE-787
6.7
6.7
2020-08-21 CVE-2019-11849 Out-of-bounds Write vulnerability in Sierrawireless Aleos
A stack overflow vulnerabiltity exists in the AT command APIs of ALEOS before 4.11.0.
local
low complexity
sierrawireless CWE-787
6.7
6.7
2020-08-21 CVE-2019-11848 Out-of-bounds Write vulnerability in Sierrawireless Aleos
An API abuse vulnerability exists in the AT command API of ALEOS before 4.13.0, 4.9.5, 4.4.9 due to lack of length checking when handling certain user-provided values.
network
low complexity
sierrawireless CWE-787
7.2
7.2
2020-08-21 CVE-2019-11847 Improper Privilege Management vulnerability in Sierrawireless Aleos
An improper privilege management vulnerabitlity exists in ALEOS before 4.11.0, 4.9.4 and 4.4.9.
local
low complexity
sierrawireless CWE-269
7.8
7.8