An issue exists on Moxa AWK-3121 1.14 devices. It is intended that an administrator can download /systemlog.log (the system log). However, the same functionality allows an malicious user to download the file without any authentication or authorization.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
moxa awk-3121_firmware 1.14 |