CVSS 3.1 Score 7.5 of 10 (high)


Published Dec 4, 2023
Updated: Dec 8, 2023
CWE ID 476


CVE-2023-40459 is a vulnerability that affects the ACEManager component of ALEOS 4.16 and earlier. It is categorized as a Denial of Service (DoS) vulnerability and has a risk score of 30. The vulnerability occurs due to inadequate input sanitization during authentication. This can potentially lead to a DoS condition for ACEManager without affecting other router functions. The affected products include ZtP0x5, ZtP0x4, ZtP0x7, and several others. The potential danger to organizations is high as an attacker could exploit this vulnerability to disrupt the availability of ACEManager. Remediation involves updating to a version later than 4.16 or applying patches provided by the vendor Sierra Wireless.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-40459 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options