CVE-2017-6046
Severity CVSS v4.0:
Pending analysis
Type:
CWE-522
Insufficiently Protected Credentials
Publication date:
30/06/2017
Last modified:
20/04/2025
Description
An Insufficiently Protected Credentials issue was discovered in Sierra Wireless AirLink Raven XE, all versions prior to 4.0.14, and AirLink Raven XT, all versions prior to 4.0.11. Sensitive information is insufficiently protected during transmission and vulnerable to sniffing, which could lead to information disclosure.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:sierra_wireless:airlink_raven_xe_firmware:*:*:*:*:*:*:*:* | - (including) | |
| cpe:2.3:h:sierra_wireless:airlink_raven_xe:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:sierra_wireless:airlink_raven_xt_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:sierra_wireless:airlink_raven_xt:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page