Unrated severityNVD Advisory· Published Jan 15, 2014· Updated Apr 29, 2026

CVE-2013-2819

Description

The Sierra Wireless AirLink Raven X EV-DO gateway 4221_4.0.11.003 and 4228_4.0.11.003 allows remote attackers to install Trojan horse firmware by leveraging cleartext credentials in a crafted (1) update or (2) reprogramming action.

Affected products

Sierrawireless/Raven X Ev Do Firmware2 versions
cpe:2.3:o:sierrawireless:raven_x_ev-do_firmware:4221_4.0.11.003:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:sierrawireless:raven_x_ev-do_firmware:4221_4.0.11.003:*:*:*:*:*:*:*
- cpe:2.3:o:sierrawireless:raven_x_ev-do_firmware:4228_4.0.11.003:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp At\&t
cpe:2.3:h:sierrawireless:airlink_mp_at\&t:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp At\&t WiFi
cpe:2.3:h:sierrawireless:airlink_mp_at\&t_wifi:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Bell
cpe:2.3:h:sierrawireless:airlink_mp_bell:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Bell WiFi
cpe:2.3:h:sierrawireless:airlink_mp_bell_wifi:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Row
cpe:2.3:h:sierrawireless:airlink_mp_row:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Row WiFi
cpe:2.3:h:sierrawireless:airlink_mp_row_wifi:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Sprint
cpe:2.3:h:sierrawireless:airlink_mp_sprint:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Sprint WiFi
cpe:2.3:h:sierrawireless:airlink_mp_sprint_wifi:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Telus
cpe:2.3:h:sierrawireless:airlink_mp_telus:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Telus WiFi
cpe:2.3:h:sierrawireless:airlink_mp_telus_wifi:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Verizon
cpe:2.3:h:sierrawireless:airlink_mp_verizon:-:*:*:*:*:*:*:*
Sierrawireless/Airlink Mp Verizon WiFi
cpe:2.3:h:sierrawireless:airlink_mp_verizon_wifi:-:*:*:*:*:*:*:*
Sierrawireless/Pinpoint X
cpe:2.3:h:sierrawireless:pinpoint_x:-:*:*:*:*:*:*:*
Sierrawireless/Pinpoint Xt
cpe:2.3:h:sierrawireless:pinpoint_xt:-:*:*:*:*:*:*:*
Sierrawireless/Raven X
cpe:2.3:h:sierrawireless:raven_x:-:*:*:*:*:*:*:*
Sierrawireless/Raven X Ev Do
cpe:2.3:h:sierrawireless:raven_x_ev-do:-:*:*:*:*:*:*:*
Sierrawireless/Raven Xe
cpe:2.3:h:sierrawireless:raven_xe:-:*:*:*:*:*:*:*
Sierrawireless/Raven Xt
cpe:2.3:h:sierrawireless:raven_xt:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.sierrawireless.com/resources/support/airlink/docs/raven%20security%20vulnerability%202014-01-10.pdfnvdVendor Advisory
ics-cert.us-cert.gov/advisories/ICSA-14-007-01AnvdUS Government Resource

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000