4 matches found
Moxa EDR 810 Series Improper Input Validation (CVE-2019-10969)
Moxa EDR 810, all versions 5.1 and prior, allows an authenticated attacker to abuse the ping feature to execute unauthorized commands on the router, which may allow an attacker to perform remote code execution. This plugin only works with Tenable.ot. Please visit...
Moxa EDR-810 - Command Injection Information Disclosure
Moxa EDR-810 - Command Injection Information Disclosure During an engagement for a client, RandoriSec found 2 vulnerabilities on Moxa EDR-810 Series Secure Routers. The first one is a command injection vulnerability found on the CLI allowing an authenticated user to obtain root privileges. And th...
CVE-2019-10969
Moxa EDR 810, all versions 5.1 and prior, allows an authenticated attacker to abuse the ping feature to execute unauthorized commands on the router, which may allow an attacker to perform remote code execution...
CVE-2019-10969
Affected product: Moxa EDR 810 Series Secure Router (all versions 5.1 and prior). Vulnerability: CVE-2019-10969 is described as an improper input validation vulnerability in the CLI/ping feature that allows an authenticated attacker to execute unauthorized commands on the router, potentially resu...