Added: 02/27/2020
CVE: CVE-2019-5136
Moxa AWK-3131A is a 3-in-1 industrial wireless AP/bridge/client device.
A privilege escalation vulnerability exists in the iw_console
functionality where a specially crafted menu selection string can cause an escape from the restricted console, resulting in system access as the root user.
Contact Moxa Technical Support to get the security patch.
This exploit will only work if the default admin password hasn’t been changed.
Moxa