CVE-2023-38321 | Sierra Wireless ALEOS prior 4.17.0.12 OpenNDS /opennds_auth/ null pointer dereference

Posted by Angelo Barbosa | Dec 25, 2023 | CVE

A vulnerability classified as critical was found in Sierra Wireless ALEOS. Affected by this vulnerability is an unknown functionality of the file /opennds_auth/ of the component OpenNDS. The manipulation leads to null pointer dereference.

This vulnerability is known as CVE-2023-38321. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38321 | Sierra Wireless ALEOS prior 4.17.0.12 OpenNDS /opennds_auth/ null pointer dereference

Related Posts

CVE-2024-28117 | grav up to 1.7.44 isDangerousFunction code injection

CVE-2023-51450 | BaserCMS up to 5.0.8 os command injection (GHSA-77fc-4cv5-hmfr)

CVE-2024-32645 | Vyper up to 0.3.10 raw_log storage input validation (GHSA-xchq-w5r3-4wg3)

CVE-2024-29320 | Wallos up to 1.15.2 /subscriptions/get.php category/payment sql injection