Tag: ALEOS

Sierra Wireless ALEOS Security Advisory

Sierra Wireless was recently informed of eight security vulnerabilities in ALEOS, the operating system used in certain Sierra Wireless AirLink Routers. This includes the MP70, RV50x, RV55, LX40, LX60 ES450 and GX450. The vulnerabilities are present in ALEOS 4.16 and earlier versions and have been remediated in ALEOS 4.17 released in October 2023.

Affected Products 

These vulnerabilities affect all AirLink routers running ALEOS software releases prior to version 4.9.9 (ES450, GX450) and prior to 4.17.0.12 (MP70, RV50x, RV55, LX40, LX60). 

Recommended Actions 

Upgrade to ALEOS 4.17.0.12 (MP70, RV50x, RV55, LX40, LX60) as soon as possible or ALEOS 4.9.9 (ES450, GX450). Pending upgrade, the following mitigations are recommended: 

  1. Always use strong, and ideally unique random credentials for your devices. ALEOS devices ship by default with unique random credentials. 
  2. Disable access to ACEManager on the WAN and make use of the Sierra Wireless Airlink Management System (ALMS) or an alternative device management platform for remote management of your ALEOS devices. 
  3. If you must leave ACEManager accessible via the WAN, restrict access using measures such as Private APN, VPN, or the ALEOS Trusted IP feature that restricts access to specific hosts. 
  4. Disable Debug Mode on AirLink devices when not being used for diagnostic purposes. 
  5. Sierra Wireless recommends that customers using devices which are no longer supported and not receiving the 4.17.0.12 or 4.9.9 updates refresh those devices with actively supported devices.

For more information about these security vulnerabilities, please refer to the Source. You may also reach out to your Sierra Wireless reseller for assistance.

By 5G , , , ,

Sierra Wireless Releases ALEOS Version 4.17

You may recall that Sierra Wireless announced the General Availability of ALEOS 4.17.0.010 on September 13, 2023. While it was previously available via ALMS only, Sierra deprecated this version because of an issue where the cellular Access Point Name (APN) was mishandled on select regional carriers.

As of today, Sierra is announcing the General Availability of ALEOS 4.17.0.012 for all in production ALEOS powered routers. This includes:

  • LX40
  • LX60
  • RV50X
  • RV55
  • MP70 

This release is recommended for all of the above mentioned ALEOS powered routers. The benefits are security improvements, feature enhancements, bug fixes and radio module firmware improvements. This release will be introduced to the factory and will be available on The Source, ALMS, and AM/AMM not later than October 18, 2023.

For the ALEOS 4.17 release details, you may refer to the following:

How to Upgrade your ALEOS Powered Routers

  • ALMS: For users who have Sierra’s AirLink Management Service (ALMS), AirLink Mobility Manager (AMM) or AirLink Manager (AM), this is the preferred method of upgrade. For those not using ALMS today, this is a great opportunity to realize the benefits of managing ALEOS devices remotely. ALMS greatly simplifies managing AirLink devices, can save the cost of a truck-roll, and keeps ALEOS devices up to date with the latest ALEOS firmware and security updates.
  • ACEmanager: For users who wish to upgrade manually, refer to our instructional video.

Note that when upgrading ALEOS routers to ALEOS 4.17 from ALEOS versions earlier than 4.16, you must first upgrade to ALEOS 4.16 before upgrading to ALEOS 4.17.

Should you require any assistance with the upgrade, reach out to the 5Gstore support team!

By 5G , , , , , ,

What to Know About Sierra Wireless ALEOS 4.16.1

Sierra Wireless sent out an alert recently with regards to their ALEOS version 4.16.1. It’s important that you read this before proceeding with an upgrade. See below for all the details from their bulletin:

We have discovered an issue with ALEOS 4.16.1 relating to the AirLink Router Connection Issue affecting RV55 LTE-A Pro and MP70 LTE-A Pro routers. Affected routers are identified by their IMEI range as detailed here AirLink Router Connection Issue.

Please read this Bulletin carefully.

  1. Do not upgrade affected routers to ALEOS 4.16.1 that have been deployed and are on-air.
  2. Do not upgrade affected routers to ALEOS 4.16.1 using ALMS/AM/AMM. Wait for ALEOS 4.16.2 before upgrading deployed routers using ALMS/AM/AMM.
  3. If you have already upgraded to ALEOS 4.16.1, there is no need to downgrade.
  4. Upgrading unaffected routers to ALEOS 4.16.1 does not cause a problem.
  5. For affected routers that you have already upgraded to ALEOS 4.16.1 locally using ACEmanager, perform the factory reset per point 7.
  6. You may continue to upgrade affected routers to ALEOS 4.16.1 locally using ACEmanager with an additional final factory reset step per point 7.
  7. After you perform the upgrade, manually reset the router to factory defaults by holding the reset button down until the router power button flashes red (approximately 5 seconds), then release the reset button and allow the router to reboot. Do not reset a router to factory defaults remotely using ACEmanager, ALMS, AM/AMM because if you do, your router will go off-air and need to be manually recovered (refer to image below).
  8. We have reissued the application note “Upgrading to ALEOS 4.16.1” found on The Source to include the final factory reset step when using ACEmanager: Upgrading ALEOS 4.15.3 to 4.16.1
  9. We will release ALEOS 4.16.2 for affected routers to remediate the need for this additional “reset to factory” step. We will publish a release bulletin when the release is available in the coming weeks.
  10. You may return your affected routers using the RMA process outlined here:
    • Request an RMA via email to repairs@sierrawireless.com including the following information:
    • State the problem description as “AirLink Network Connection Issue”.
    • State the quantity of replacement routers that you require urgently. We will prioritize urgent requests subject to availability.
    • State if the boxes are unopened or have been opened/deployed as this helps process the return faster on receipt.
    • Provide the router Serial Numbers.
    • Return address to ship the updated or replacement routers.
By 5G , , , ,