Lucene search

K

Tn-5900 Firmware Security Vulnerabilities

cve
cve

CVE-2023-34217

TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation in the certificate-delete function, which could potentially allow malicious users....

8.1CVSS

7.9AI Score

0.0005EPSS

2023-08-17 07:15 AM
14
cve
cve

CVE-2023-34216

TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability derives from insufficient input validation in the key-delete function, which could potentially allow malicious users to...

8.1CVSS

7.9AI Score

0.0005EPSS

2023-08-17 07:15 AM
14
cve
cve

CVE-2023-34215

TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the certification-generation function, which could potentially allow malicious users to execute remote...

9.8CVSS

9.8AI Score

0.001EPSS

2023-08-17 07:15 AM
27
cve
cve

CVE-2023-33238

TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from inadequate input validation in the certificate management function, which could potentially allow malicious...

9.8CVSS

9.8AI Score

0.001EPSS

2023-08-17 03:15 AM
28
cve
cve

CVE-2023-34214

TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation in the certificate-generation function, which could potentially allow malicious...

9.8CVSS

9.6AI Score

0.001EPSS

2023-08-17 03:15 AM
24
cve
cve

CVE-2023-34213

TN-5900 Series firmware versions v3.3 and prior are vulnerable to command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the key-generation function, which could potentially allow malicious users to execute remote code on...

9.8CVSS

9.8AI Score

0.001EPSS

2023-08-17 03:15 AM
27
cve
cve

CVE-2023-33239

TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from insufficient input validation in the key-generation function, which could potentially allow malicious users to.....

9.8CVSS

9.8AI Score

0.001EPSS

2023-08-17 03:15 AM
27
cve
cve

CVE-2023-33237

TN-5900 Series firmware version v3.3 and prior is vulnerable to improper-authentication vulnerability. This vulnerability arises from inadequate authentication measures implemented in the web API handler, allowing low-privileged APIs to execute restricted actions that only high-privileged APIs are....

8.8CVSS

8.8AI Score

0.001EPSS

2023-08-17 02:15 AM
2404
cve
cve

CVE-2023-3336

TN-5900 Series version 3.3 and prior versions is vulnearble to user enumeration vulnerability. The vulnerability may allow a remote attacker to determine whether a user is valid during password recovery through the web login page and enable a brute force attack with valid...

5.3CVSS

5.4AI Score

0.001EPSS

2023-07-05 10:15 AM
15
cve
cve

CVE-2021-46560

The firmware on Moxa TN-5900 devices through 3.1 allows command injection that could lead to device...

9.8CVSS

9.7AI Score

0.001EPSS

2022-01-26 02:15 AM
27
cve
cve

CVE-2021-46559

The firmware on Moxa TN-5900 devices through 3.1 has a weak algorithm that allows an attacker to defeat an inspection mechanism for integrity...

7.5CVSS

7.5AI Score

0.001EPSS

2022-01-26 02:15 AM
30