Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 9 |
|---|---|---|---|---|
 | Moxa EDR-810 Command Injection Vulnerability (CNVD-2018-11723) | 15 May 201800:00 | – | cnvd |
 | CVE-2017-14433 | 14 May 201820:00 | – | cvelist |
 | EUVD-2017-5936 | 7 Oct 202500:30 | – | euvd |
 | CVE-2017-14433 | 14 May 201820:29 | – | nvd |
 | Command injection | 14 May 201820:29 | – | prion |
 | PT-2018-5634 · Moxa · Edr-810 | 14 May 201800:00 | – | ptsecurity |
 | Moxa EDR-810 Web Server OpenVPN Config Multiple Command Injection Vulnerabilities(CVE-2017-14432 - CVE-2017-14434) | 16 Apr 201800:00 | – | seebug |
 | Moxa EDR-810 Web Server OpenVPN Config Multiple Command Injection Vulnerabilities | 13 Apr 201800:00 | – | talos |
 | Moxa EDR-810 Web Server OpenVPN Config Command Injection (CVE-2017-14433) | 2 Aug 202300:00 | – | nessus |
Node
[
{
"product": "Moxa",
"vendor": "Talos",
"versions": [
{
"status": "affected",
"version": "Moxa EDR-810 V4.1 build 17030317"
}
]
}
]| Source | Link |
|---|---|
| talosintelligence | www.talosintelligence.com/vulnerability_reports/TALOS-2017-0482 |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| openvpnServer0_tmp | request body | /goform/net_Web_get_value | Command injection vulnerability via POST parameters to /goform/net_Web_get_value leading to root shell if exploited. | CWE-78 |
| remoteNetwork0 | request body | /goform/net_Web_get_value | Command injection vulnerability via POST parameters to /goform/net_Web_get_value leading to root shell if exploited. | CWE-78 |
| remoteNetmask0 | request body | /goform/net_Web_get_value | Command injection vulnerability via POST parameters to /goform/net_Web_get_value leading to root shell if exploited. | CWE-78 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
21 Nov 2024 03:12Current
9High risk
Vulners AI Score9
CVSS 3.18.8
CVSS 29
CVSS 38.8
EPSS0.02645