Lucene search
+L

4 matches found

Packet Storm
Packet Storm
added 2022/01/31 12:0 a.m.229 views

Moxa TN-5900 Firmware Upgrade Checksum Validation

KL-001-2022-001: Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability Title: Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability Advisory ID: KL-001-2022-001 Publication Date: 2022.01.28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2022-001.txt 1...

0.5AI score0.00436EPSS
Exploits2
KoreLogic Security
KoreLogic Security
added 2022/01/28 12:0 a.m.50 views

Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability

Vulnerability Details Affected Vendor: Moxa Affected Product: TN-5900 Affected Version: v3.1 and prior Platform: Moxa Linux CWE Classification: CWE-354 Improper Validation of Integrity Check Value CVE ID: CVE-2021-46559 2. Vulnerability Description Moxa TN-5900 v3.1.0 and prior uses an insecure...

7.5CVSS7.6AI score0.00436EPSS
Exploits2Affected Software1
NVD
NVD
added 2022/01/26 2:15 a.m.23 views

CVE-2021-46559

The firmware on Moxa TN-5900 devices through 3.1 has a weak algorithm that allows an attacker to defeat an inspection mechanism for integrity protection...

7.5CVSS0.00436EPSS
Exploits2References1
CVE
CVE
added 2022/01/26 1:11 a.m.63 views

CVE-2021-46559

CVE-2021-46559 affects Moxa TN-5900 devices (firmware up to v3.1). The root cause is an insecure firmware update integrity check (weak checksum/validation) that can allow an attacker with management-interface access to upload arbitrary code by manipulating the firmware image header (CRC). Documen...

7.5CVSS7.5AI score0.00436EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder