3 matches found
CVE-2019-5136
An exploitable privilege escalation vulnerability exists in the iwconsole functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted menu selection string can cause an escape from the restricted console, resulting in system access as the root user. An attacker can send command...
Moxa AWK-3131A iw_console privilege escalation vulnerability
Added: 02/27/2020 CVE: CVE-2019-5136 Background Moxa AWK-3131A is a 3-in-1 industrial wireless AP/bridge/client device. Problem A privilege escalation vulnerability exists in the iwconsole functionality where a specially crafted menu selection string can cause an escape from the restricted consol...
CVE-2019-5136
CVE-2019-5136 affects Moxa AWK-3131A (firmware v1.13). The iw_console privilege-escalation flaw allows a low-privilege, authenticated user to craft a menu selection that escapes the restricted console and gains root access. CVSSv3 base score 8.8 (NETWORK, LOW attack complexity, Privileges Require...