Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moxa awk-3121 firmware 1.14 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-10698
An issue exists on Moxa AWK-3121 1.14 devices. The device enables an unencrypted TELNET service by default. This allows an attacker who has been able to gain an MITM position to easily sniff the traffic between the device and the user. Also an attacker can easily connect to the T...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10693
An issue exists on Moxa AWK-3121 1.14 devices. It provides ping functionality so that an administrator can execute ICMP calls to check if the network is working correctly. However, the same functionality allows an malicious user to execute commands on the device. The POST paramet...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10696
An issue exists on Moxa AWK-3121 1.14 devices. The device provides a web interface to allow an administrator to manage the device. However, this interface is not protected against CSRF attacks, which allows an malicious user to trick an administrator into executing actions withou...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10699
An issue exists on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides certfile upload functionality so that an administrator can upload a certificate file used for connecting to the wireless network. However, the same functionality allows an malicious user to execute commands...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10701
An issue exists on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an malicious user to execute commands on the device. The POST parameter "iw_file...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10702
An issue exists on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an malicious user to execute commands on the device. The POST parameter "iw_file...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10703
An issue exists on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an malicious user to execute commands on the device. The POST parameter "iw_serv...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10695
An issue exists on Moxa AWK-3121 1.14 devices. It provides alert functionality so that an administrator can send emails to his/her account when there are changes to the device's network. However, the same functionality allows an malicious user to execute commands on the devi...
Moxa Awk-3121 Firmware 1.14
8.8
CVSSv3
CVE-2018-10697
An issue exists on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides ping functionality so that an administrator can execute ICMP calls to check if the network is working correctly. However, the same functionality allows an malicious user to execute commands on the device. T...
Moxa Awk-3121 Firmware 1.14
8.1
CVSSv3
CVE-2018-10690
An issue exists on Moxa AWK-3121 1.14 devices. The device by default allows HTTP traffic thus providing an insecure communication mechanism for a user connecting to the web server. This allows an malicious user to sniff the traffic easily and allows an malicious user to compromis...
Moxa Awk-3121 Firmware 1.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »