CVE-2019-5137

The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa AWK-3131A firmware version 1.13...

CVE-2019-5137

The Moxa AWK-3131A Series (firmware 1.13) ServiceAgent uses a hard-coded cryptographic key, enabling decryption of network traffic to/from the device. CVE-2019-5137 (CVSSv3 7.5) details the root cause and impact (confidentiality HIGH). A vendor patch is available; apply the security update from M...

Moxa AWK-3131A ServiceAgent Trust Management Issue Vulnerability

Moxa AWK-3131A is a wireless access device from Moxa. A trust management issue vulnerability exists in the ServiceAgent binary in the Moxa AWK-3131A using firmware version 1.13. An attacker could exploit this vulnerability to decrypt captured traffic...

Moxa AWK-3131A ServiceAgent denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa AWK-3131A, firmware version 1.13. A specially crafted packet can cause an integer underflow, triggering a large memcpy that will access unmapped or out-of-bounds memory. An attacker can send th...

Moxa AWK-3131A serviceAgent Information Disclosure Vulnerability(CVE-2016-8724)

Summary An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive information. Tested Versions Moxa AWK-3131A...

Moxa AWK-3131A Wireless Access Point Information Disclosure Vulnerability

Moxa AWK-3131A Wireless Access Point is a wireless switch from Moxa China. An information disclosure vulnerability exists in the serviceAgent feature of the Moxa AWK-3131A Wireless Access Point using firmware version 1.1. The vulnerability can be exploited to retrieve sensitive information via a...

CVE-2016-8724

An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive information...

PT-2017-9766 · Moxa · Moxa Awk-3131A Wireless Access Point

Name of the Vulnerable Software and Affected Versions: Moxa AWK-3131A Wireless Access Point version 1.1 Description: An exploitable information disclosure issue exists in the serviceAgent functionality. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive...

Moxa AWK Series serviceAgent Information Disclosure Vulnerability

Moxa AWK series wireless access points are prone to an information disclosure vulnerability in the serviceAgent. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Moxa AWK-3131A serviceAgent Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive information. Tested Versions Moxa AWK-3131A...