120 matches found
EUVD-2018-2770
Malware in sbrugna...
EUVD-2018-2765
Malware in sbrugna...
EUVD-2018-2764
Malware in sbrugna...
EUVD-2018-2769
Malware in sbrugna...
EUVD-2018-2766
Malware in sbrugna...
EUVD-2018-2763
Malware in sbrugna...
EUVD-2018-2768
Malware in sbrugna...
EUVD-2018-2762
Malware in sbrugna...
EUVD-2018-2771
Malware in sbrugna...
EUVD-2018-2773
Malware in sbrugna...
EUVD-2018-2772
Malware in sbrugna...
EUVD-2018-2774
Malware in sbrugna...
EUVD-2018-2767
Malware in sbrugna...
EUVD-2018-2761
Malware in sbrugna...
Moxa AWK-3121 Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2018-10703)
An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an attacker to execute commands on the device. The POST parameter iwserverip is susceptible to...
Moxa AWK-3121 Improper Access Control (CVE-2018-10691)
An issue was discovered on Moxa AWK-3121 1.14 devices. It is intended that an administrator can download /systemlog.log the system log. However, the same functionality allows an attacker to download the file without any authentication or authorization. This plugin only works with Tenable.ot. Plea...
Moxa AWK-3121 Improper Neutralization of Special Elements Used in a Command (CVE-2018-10699)
An issue was discovered on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides certfile upload functionality so that an administrator can upload a certificate file used for connecting to the wireless network. However, the same functionality allows an attacker to execute commands on the device...
Moxa AWK-3121 Cleartext Transmission of Sensitive Information (CVE-2018-10698)
An issue was discovered on Moxa AWK-3121 1.14 devices. The device enables an unencrypted TELNET service by default. This allows an attacker who has been able to gain an MITM position to easily sniff the traffic between the device and the user. Also an attacker can easily connect to the TELNET...
Moxa AWK-3121 Sensitive Cookie Without Httponly Flag (CVE-2018-10692)
An issue was discovered on Moxa AWK-3121 1.14 devices. The session cookie Password508 does not have an HttpOnly flag. This allows an attacker who is able to execute a cross-site scripting attack to steal the cookie very easily. This plugin only works with Tenable.ot. Please visit...
Moxa AWK-3121 Improper Neutralization of Special Elements Used in a Command (CVE-2018-10702)
An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an attacker to execute commands on the device. The POST parameter iwfilename is susceptible to...