Vulnerability Details CVE-2015-2897
Sierra Wireless ALEOS before 4.4.2 on AirLink ES, GX, and LS devices has hardcoded root accounts, which makes it easier for remote attackers to obtain administrative access via a (1) SSH or (2) TELNET session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.5%
CVSS Severity
CVSS v2 Score 10.0
Products affected by CVE-2015-2897
-
cpe:2.3:a:sierrawireless:aleos:*
-
cpe:2.3:h:sierrawireless:airlink_es440:-
-
cpe:2.3:h:sierrawireless:airlink_es450:-
-
cpe:2.3:h:sierrawireless:airlink_gx440:-
-
cpe:2.3:h:sierrawireless:airlink_gx450:-
-
cpe:2.3:h:sierrawireless:airlink_ls300:-