Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.19 views

Moxa EDR-810 Web Server OpenVPN Config Command Injection (CVE-2017-14433)

An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into the remoteNetwork0= parameter in the...

9CVSS8.2AI score0.04832EPSS
Exploits2References2
NVD
NVD
added 2018/05/14 8:29 p.m.23 views

CVE-2017-14433

An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into the remoteNetwork0= parameter in the...

9CVSS9.1AI score0.04832EPSS
Exploits2References1
CVE
CVE
added 2018/05/14 8:0 p.m.64 views

CVE-2017-14433

CVE-2017-14433 affects Moxa EDR-810 web server (V4.1, build 17030317). A command-injection flaw in the Web interface allows OS commands to be injected via the remoteNetwork0 parameter in POST requests to /goform/net_Web_get_value, enabling privilege escalation to a root shell. TALOS reports the i...

9CVSS9AI score0.04832EPSS
Exploits2References1Affected Software1
seebug.org
seebug.org
added 2018/04/16 12:0 a.m.59 views

Moxa EDR-810 Web Server OpenVPN Config Multiple Command Injection Vulnerabilities(CVE-2017-14432 - CVE-2017-14434)

Summary An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into various paramaters in the...

9CVSS0.5AI score0.04832EPSS
Exploits4
Talos
Talos
added 2018/04/13 12:0 a.m.52 views

Moxa EDR-810 Web Server OpenVPN Config Multiple Command Injection Vulnerabilities

Summary An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into various paramaters in the...

9CVSS8.9AI score0.04832EPSS
Exploits4
Rows per page
Query Builder