CVE-2016-5069by Jeremyin Security Bulletinson Posted on April 10, 2017 Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 use guessable session tokens, which are in the URL.