CVE-2017-6046
Last modified
CVE-2017-6046 is a vulnerability of currently unknown severity. An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to information disclosure.. EPSS estimates a 1.57% chance of exploitation in the next 30 days.
Description
An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to information disclosure.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Sierra Wireless | Airlink Raven Xe Firmware | <= - |
| Sierra Wireless | Airlink Raven Xt Firmware | All versions |
References
- http://www.securityfocus.com/bid/98036Third Party Advisory, VDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-115-02Third Party Advisory, US Government Resource, VDB Entry
- http://www.securityfocus.com/bid/98036Third Party Advisory, VDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-115-02Third Party Advisory, US Government Resource, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-6046?
How severe is CVE-2017-6046?
How do I fix CVE-2017-6046?
Are you affected by CVE-2017-6046?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST