Moxa AWK-3131A ServiceAgent denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa AWK-3131A, firmware version 1.13. A specially crafted packet can cause an integer underflow, triggering a large memcpy that will access unmapped or out-of-bounds memory. An attacker can send th...

Moxa AWK-3131A WAP Hostname Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the hostname functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted entry to network configuration information can cause execution of arbitrary system commands, resulting in full control of the device. An...

Moxa AWK-3131A iw_webs iw_serverip Parameter Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the iwwebs functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted iwserverip parameter can cause user input to be reflected in a subsequent iwsystem call, resulting in remote control over the device. An...

Moxa AWK-3131A iw_webs hostname Authentication Bypass Vulnerability

Summary An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A specially configured device hostname can cause the device to interpret select remote traffic as local traffic, resulting in a bypass of web authentication. A...

Moxa AWK-3131A Encrypted Diagnostic Script Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted diagnostic script file can cause arbitrary busybox commands to be executed, resulting in remote control over the device. An...

Moxa AWK-3131A iw_webs DecryptScriptFile file name Command Injection Vulnerability

Summary An exploitable command injection vulnerability exists in the iwwebs functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted diagnostic script file name can cause user input to be reflected in a subsequent iwsystem call, resulting in remote control over the device. A...

The vulnerability of the microprogrammed wireless access point software for Moxa AWK-3121 lies in insufficient validation of arguments passed in commands, allowing attackers to execute arbitrary commands with root privileges.

The vulnerability of the microprogrammed wireless access point software for Moxa AWK-3121 lies in insufficient verification of the arguments passed in the command. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges, using a specially crafted...

The vulnerability of the microprogrammed wireless access point software for Moxa AWK-3121 lies in the fact that the execution of certain operations goes beyond the buffer in memory. This allows a malicious user to execute arbitrary commands with root privileges.

The vulnerability of the microprogrammed wireless access point software for Moxa AWK-3121 lies in the fact that the operation data is stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with root privileges, using a speciall...

Moxa AWK-3121 Information Disclosure Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. An information disclosure vulnerability exists in Moxa AWK-3121 version 1.14. An attacker can exploit this vulnerability by sniffing traffic to obtain sensitive information...

Moxa AWK-3121 Access Control Error Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. An access control error vulnerability exists in the Moxa AWK-3121 version 1.14. The vulnerability arises from a network system or product that does not properly restrict access to resources from unauthorized roles...

Moxa AWK-3121 Encryption Issues Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. An encryption issue vulnerability exists in Moxa AWK-3121 version 1.14. The vulnerability stems from the network system or product not properly using the relevant cryptographic algorithms, resulting in content not...

Moxa AWK-3121 Parameter Injection Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A parameter injection vulnerability exists in the 'iwprivatePass' parameter in the Moxa AWK-3121 version 1.14, which can be exploited by an attacker to execute illegal commands...

Moxa AWK-3121 Information Disclosure Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. An information disclosure vulnerability exists in the Moxa AWK-3121 version 1.14, which can be exploited by unauthorized attackers to obtain sensitive information about an affected component...

Moxa AWK-3121 Command Injection Vulnerability (CNVD-2019-17004)

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A command injection vulnerability exists in the 'srvName' parameter in the Moxa AWK-3121 version 1.14, which can be exploited by an attacker to execute illegal commands...

Moxa AWK-3121 Cross-Site Scripting Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A cross-site scripting vulnerability exists in the 'iwboarddeviceName' parameter in the Moxa AWK-3121 version 1.19, which can be exploited by an attacker to execute client-side code...

Moxa AWK-3121 Buffer Overflow Vulnerability (CNVD-2019-17002)

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A buffer overflow vulnerability exists in Moxa AWK-3121 version 1.14, which can be exploited by an attacker to cause a buffer overflow or heap overflow, among others...

Moxa AWK-3121 Cross-Site Request Forgery Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A cross-site request forgery vulnerability exists in the Moxa AWK-3121 version 1.14, which can be exploited by an attacker to send an unintended request to a server via an affected client...

Moxa AWK-3121 Buffer Overflow Vulnerability (CNVD-2019-17008)

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A buffer overflow vulnerability exists in the 'iwfilename' parameter in the Moxa AWK-3121 version 1.14, which can be exploited by an attacker to cause, for example, a buffer overflow or heap overflow...

Moxa AWK-3121 Trust Management Issues Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A trust management issue vulnerability exists in the Moxa AWK-3121 version 1.14, which can be exploited by an attacker to attack the affected component with a default password or hard-coded passwords and hard-code...

Moxa AWK-3121 Buffer Overflow Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. A buffer overflow vulnerability exists in the 'iwserverip' parameter in the Moxa AWK-3121 version 1.14, which can be exploited by an attacker to cause, for example, a buffer overflow or heap overflow...