Vulnerability Details CVE-2020-8781
Lack of input sanitization in UpdateRebootMgr service of ALEOS 4.11 and later allow an escalation to root from a low-privilege process.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
Products affected by CVE-2020-8781
-
cpe:2.3:h:sierrawireless:airlink_es440:-
-
cpe:2.3:h:sierrawireless:airlink_es450:-
-
cpe:2.3:h:sierrawireless:airlink_gx400:-
-
cpe:2.3:h:sierrawireless:airlink_gx440:-
-
cpe:2.3:h:sierrawireless:airlink_gx450:-
-
cpe:2.3:h:sierrawireless:airlink_ls300:-
-
cpe:2.3:h:sierrawireless:airlink_lx40:-
-
cpe:2.3:h:sierrawireless:airlink_lx60:-
-
cpe:2.3:h:sierrawireless:airlink_mp70:-
-
cpe:2.3:h:sierrawireless:airlink_mp70e:-
-
cpe:2.3:h:sierrawireless:airlink_rv50:-
-
cpe:2.3:h:sierrawireless:airlink_rv50x:-
-
cpe:2.3:h:sierrawireless:airlink_rv55:-
-
cpe:2.3:o:sierrawireless:aleos:4.11.0
-
cpe:2.3:o:sierrawireless:aleos:4.11.1
-
cpe:2.3:o:sierrawireless:aleos:4.11.2
-
cpe:2.3:o:sierrawireless:aleos:4.12.0
-
cpe:2.3:o:sierrawireless:aleos:4.13.0