4 matches found
Moxa NPort W2x50A Authenticated OS Command Injection in Web Server WLAN Profile Properties Functionality (CVE-2018-19660)
An exploitable authenticated command-injection vulnerability exists in the web server functionality of Moxa NPort W2x50A products with firmware before 2.2 Build18082311. A specially crafted HTTP POST request to /goform/webSettingProfileSecurity can result in running OS commands as the root user...
CVE-2018-19660
CVE-2018-19660 affects Moxa NPort W2x50A devices with firmware prior to 2.2 Build_18082311. The vulnerability resides in the web server functionality and stems from an authenticated OS command injection via a specially crafted HTTP POST to /goform/webSettingProfileSecurity, potentially allowing r...
Moxa NPort W2x50A 2.1 OS Command Injection Vulnerability
Moxa NPort W2x50A products with firmware version 2.1 Build17112017 or lower are vulnerable to several authenticated OS command injection vulnerabilities. Moxa NPort W2x50A products with firmware version 2.1 Build17112017 or lower are vulnerable to several authenticated OS Command Injection...
Moxa NPort W2x50A 2.1 OS Command Injection
Moxa NPort W2x50A products with firmware version 2.1 Build17112017 or lower are vulnerable to several authenticated OS Command Injection vulnerabilities: 1 Authenticated OS Command Injection in web server ping functionality Reserverd CVE ID: CVE-2018-19659 A specially crafted HTTP POST request to...