Lucene search
PRIOn knowledge basePRION:CVE-2018-19659HistoryDec 06, 2018 - 11:29 p.m.
Command injection
2018-12-0623:29:00
PRIOn knowledge base
www.prio-n.com
2
An exploitable authenticated command-injection vulnerability exists in the web server functionality of Moxa NPort W2x50A products with firmware before 2.2 Build_18082311. A specially crafted HTTP POST request to /goform/net_WebPingGetValue can result in running OS commands as the root user. This is similar to CVE-2017-12120.
| CPE | Name | Operator | Version |
|---|---|---|---|
| nport_w2x50a_firmware | lt | 2.2 |
Related
nvd
nvd
CVE-2018-19659
2018-12-06 23:29:01
CVE-2017-12120
2018-05-14 20:29:00
cve
cve
CVE-2018-19659
2018-12-06 23:29:01
CVE-2017-12120
2018-05-14 20:29:00
nessus
nessus
cvelist
cvelist
CVE-2018-19659
2018-12-06 23:00:00
CVE-2017-12120
2018-04-13 00:00:00
packetstorm
packetstorm
Moxa NPort W2x50A 2.1 OS Command Injection
2018-11-29 00:00:00
talos
talos
Moxa EDR-810 Web Server ping Command Injection Vulnerability
2018-04-13 00:00:00
seebug
seebug
Moxa EDR-810 Web Server ping Command Injection Vulnerability(CVE-2017-12120)
2018-04-16 00:00:00
prion
prion
Command injection
2018-05-14 20:29:00
zdt
zdt
Moxa NPort W2x50A 2.1 OS Command Injection Vulnerability
2018-12-01 00:00:00
talosblog
talosblog