Moxa Multiple Products Command Injection (CVE-2021-39279)

A command injection vulnerability exists in Multiple Moxa Products. Successful exploitation of this vulnerability could allow a remote, authenticated attacker to execute arbitrary commands on the affected system...

CVE-2021-39279

The CVE-2021-39279 entry concerns authenticated command injection in multiple MOXA devices via /forms/web_importTFTP. Affected products/versions explicitly listed include WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323...

Moxa Command Injection / Cross Site Scripting Vulnerabilities

======================================================================= title: Multiple vulnerabilities product: see "Vulnerable / tested versions" vulnerable version: see "Vulnerable / tested versions" fixed version: see "Solution" CVE number: CVE-2021-39278, CVE-2021-39279 impact: High homepage...

Moxa Command Injection / Cross Site Scripting / Vulnerable Software

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: Multiple vulnerabilities product: see "Vulnerable / tested versions" vulnerable version: see "Vulnerable / tested versions" fixed version: see "Solution" CVE number:...