4 matches found
Moxa TN-5900 Firmware Upgrade Checksum Validation
KL-001-2022-001: Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability Title: Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability Advisory ID: KL-001-2022-001 Publication Date: 2022.01.28 Publication URL: https://korelogic.com/Resources/Advisories/KL-001-2022-001.txt 1...
Moxa TN-5900 Firmware Upgrade Checksum Validation Vulnerability
Vulnerability Details Affected Vendor: Moxa Affected Product: TN-5900 Affected Version: v3.1 and prior Platform: Moxa Linux CWE Classification: CWE-354 Improper Validation of Integrity Check Value CVE ID: CVE-2021-46559 2. Vulnerability Description Moxa TN-5900 v3.1.0 and prior uses an insecure...
CVE-2021-46559
The firmware on Moxa TN-5900 devices through 3.1 has a weak algorithm that allows an attacker to defeat an inspection mechanism for integrity protection...
CVE-2021-46559
CVE-2021-46559 affects Moxa TN-5900 devices (firmware up to v3.1). The root cause is an insecure firmware update integrity check (weak checksum/validation) that can allow an attacker with management-interface access to upload arbitrary code by manipulating the firmware image header (CRC). Documen...