Lucene search
+L

423 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.9 views

EUVD-2017-5937

Malware in sbrugna...

9CVSS8.8AI score0.04493EPSS
Exploits2References2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-3713

Malware in sbrugna...

8CVSS4.7AI score0.0071EPSS
Exploits2References2
euvd
euvd
added 2025/10/07 12:30 a.m.11 views

EUVD-2017-3705

Malware in sbrugna...

9CVSS8.7AI score0.04328EPSS
Exploits2References2
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-8133

Malware in sbrugna...

9CVSS8.8AI score0.0466EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-54311

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00449EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 9:23 a.m.9 views

CVE-2019-10969

Moxa EDR 810, all versions 5.1 and prior, allows an authenticated attacker to abuse the ping feature to execute unauthorized commands on the router, which may allow an attacker to perform remote code execution...

7.2CVSS7.6AI score0.08747EPSS
Exploits4References1
redhatcve
redhatcve
added 2025/05/22 7:52 a.m.6 views

CVE-2019-10963

Moxa EDR 810, all versions 5.1 and prior, allows an unauthenticated attacker to be able to retrieve some log files from the device, which may allow sensitive information disclosure. Log files must have previously been exported by a legitimate user...

4.3CVSS6.1AI score0.06344EPSS
Exploits5References1
cnnvd
cnnvd
added 2025/04/02 12:0 a.m.5 views

MOXA EDR-810 操作系统命令注入漏洞

MOXA EDR-810 is a secure router from China's MOXA MOXA. The MOXA EDR-810 suffers from a security vulnerability that originates from the NTP settings in the device's web interface, which could lead to the execution of arbitrary system commands and an infinite reboot loop by a remote attacker...

9.2CVSS7.1AI score0.00531EPSS
Exploits0References2
bdu_fstec
bdu_fstec
added 2025/04/02 12:0 a.m.12 views

The vulnerability of the web interface of Moxa network device software for models EDF-G1002-BP, EDR-810, EDR-8010, EDR-G9004, EDR-G9010, NAT-102, TN-4900, and OnCell G4302-LTE4 allows a perpetrator to execute arbitrary commands through NTP settings, thereby gaining full control over the device.

The vulnerability of the web interface of Moxa network devices of the EDF-G1002-BP, EDR-810, EDR-8010, EDR-G9004, EDR-G9010, NAT-102, TN-4900, and OnCell G4302-LTE4 series is related to the lack of measures to neutralize specific components. Exploiting this vulnerability allows a malicious actor ...

9.1CVSS5.9AI score0.00531EPSS
Exploits0References2Affected Software8
nessus
nessus
added 2025/01/24 12:0 a.m.18 views

Amazon Linux 2023 : python3-jinja2 (ALAS2023-2025-810)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-810 advisory. Jinja is an extensible templating engine. Prior to 3.1.5, An oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to...

7.8CVSS7.3AI score0.005EPSS
Exploits0References4
cnnvd
cnnvd
added 2025/01/03 12:0 a.m.5 views

Moxa多款产品 安全漏洞

MOXA EDR-810 and others are products of China-based Moxa MOXA.MOXA EDR-810 is a secure router.MOXA EDR-G902 is an industrial security router device.MOXA EDR-8010 is a secure router. A security vulnerability exists in several Moxa products that stems from the use of hard-coded credentials. An...

8.6CVSS9.7AI score0.01123EPSS
Exploits0References1
nessus
nessus
added 2023/11/09 12:0 a.m.16 views

Moxa EDR Products Denial of Service (CVE-2023-4452)

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot. This plugin...

7.5CVSS7.1AI score0.00449EPSS
Exploits0References2
nvd
nvd
added 2023/11/01 3:15 p.m.17 views

CVE-2023-4452

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot...

7.5CVSS6.9AI score0.00449EPSS
Exploits0References1
osv
osv
added 2023/11/01 3:15 p.m.4 views

CVE-2023-4452

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot...

7.5CVSS5.7AI score0.00449EPSS
Exploits0References1
cve
cve
added 2023/11/01 2:24 p.m.86 views

CVE-2023-4452

CVE-2023-4452 affects MOXA EDR-810, EDR-G902 and EDR-G903 series. The root cause is insufficient input validation in the URI of the device web server, leading to a denial-of-service that can trigger a reboot. Documented impact is Availability: High (DoS) with potential device reboot; Attack Vecto...

7.5CVSS6.9AI score0.00449EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2023/11/01 12:0 a.m.8 views

PT-2023-29267 · Unknown · Edr-810 Series +2

Name of the Vulnerable Software and Affected Versions: EDR-810 series affected versions not specified EDR-G902 series affected versions not specified EDR-G903 series affected versions not specified Description: A denial-of-service vulnerability has been identified, stemming from insufficient inpu...

7.5CVSS7.2AI score0.00449EPSS
Exploits0References6
cnnvd
cnnvd
added 2023/11/01 12:0 a.m.7 views

Moxa EDR-810, EDR-G902, EDR-G903 Series Security Breach

MOXA Moxa EDR-810 and so on are the products of China MOXA company.Moxa EDR-810 is a security router.Moxa EDR-G903 is an industrial security router device integrating firewall/NAT/VPN.Moxa EDR-G902 is an industrial security router device integrating firewall/NAT/VPN.Moxa EDR-G902 is an industrial...

7.5CVSS6.6AI score0.00449EPSS
Exploits0References2
nvd
nvd
added 2023/10/03 1:15 a.m.11 views

CVE-2023-39222

OS command injection vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to execute an arbitrary OS command that is not intended to be executed from the web interface by sending a specially crafted request. Affected products and versions are as follows:...

8.8CVSS8.8AI score0.01286EPSS
Exploits0References2
osv
osv
added 2023/10/03 1:15 a.m.4 views

CVE-2023-41086

Cross-site request forgery CSRF vulnerability exists in FURUNO SYSTEMS wireless LAN access point devices. If a user views a malicious page while logged in, unintended operations may be performed. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i...

8.8CVSS5.7AI score0.00236EPSS
Exploits0References2
prion
prion
added 2023/10/03 1:15 a.m.19 views

Cross site scripting

Cross-site scripting vulnerability in FURUNO SYSTEMS wireless LAN access point devices allows an authenticated user to inject an arbitrary script via a crafted configuration. Affected products and versions are as follows: ACERA 1210 firmware ver.02.36 and earlier, ACERA 1150i firmware ver.01.35 a...

4.9CVSS5.3AI score0.00303EPSS
Exploits0References2Affected Software12
Rows per page
Query Builder