CVE-2023-4452

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot...

EUVD-2020-6647

Malware in sbrugna...

EUVD-2020-20630

Malware in sbrugna...

EUVD-2023-54311

Malicious code in bioql PyPI...

CVE-2020-14511

Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers versions prior to 5.4...

Moxa多款产品 安全漏洞

MOXA EDR-810 and others are products of China-based Moxa MOXA.MOXA EDR-810 is a secure router.MOXA EDR-G902 is an industrial security router device.MOXA EDR-8010 is a secure router. A security vulnerability exists in several Moxa products that stems from the use of hard-coded credentials. An...

Moxa EDR Products Denial of Service (CVE-2023-4452)

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot. This plugin...

CVE-2023-4452

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot...

CVE-2023-4452

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot...

CVE-2023-4452

CVE-2023-4452 affects MOXA EDR-810, EDR-G902 and EDR-G903 series. The root cause is insufficient input validation in the URI of the device web server, leading to a denial-of-service that can trigger a reboot. Documented impact is Availability: High (DoS) with potential device reboot; Attack Vecto...

Moxa EDR-810, EDR-G902, EDR-G903 Series Security Breach

MOXA Moxa EDR-810 and so on are the products of China MOXA company.Moxa EDR-810 is a security router.Moxa EDR-G903 is an industrial security router device integrating firewall/NAT/VPN.Moxa EDR-G902 is an industrial security router device integrating firewall/NAT/VPN.Moxa EDR-G902 is an industrial...

PT-2023-29267 · Unknown · Edr-810 Series +2

Name of the Vulnerable Software and Affected Versions: EDR-810 series affected versions not specified EDR-G902 series affected versions not specified EDR-G903 series affected versions not specified Description: A denial-of-service vulnerability has been identified, stemming from insufficient inpu...

Moxa EDR-G902 and EDR-G903 Series Routers Stack-Based Buffer Overflow (CVE-2020-14511)

Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers versions prior to 5.4. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

Moxa (CVE-2020-28144)

Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code...

The vulnerability of the command interpreter in Moxa EDR-810, EDR-G902, EDR-G903, TN-4900, and TN-5916 router microprogramming devices allows attackers to execute arbitrary code.

The vulnerability of the command interpreter in Moxa EDR-810, EDR-G902, EDR-G903, TN-4900, and TN-5916 microprogrammed service routers stems from errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending specially crafted HTTP/HTT...

PT-2022-5654 · Moxa · Moxa Edr-G903 +4

Name of the Vulnerable Software and Affected Versions: Moxa TN-5916 versions affected versions not specified Moxa TN-4900 versions affected versions not specified Moxa EDR-G903 versions affected versions not specified Moxa EDR-G902 versions affected versions not specified Moxa EDR-810 versions...

CVE-2020-28144

The CVE-2020-28144 entry concerns Moxa EDR-G903 (Firmware ≤ 5.5), EDR-G902 (Firmware ≤ 5.5), and EDR-810 (Firmware ≤ 5.6). The vulnerability is due to an improper restriction of operations, where crafted requests may enable remote arbitrary code execution. The connected sources confirm the affect...

CVE-2020-28144

Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code...

Critical Bugs in Utilities VPNs Could Cause Physical Damage

Remote code-execution vulnerabilities in virtual private network VPN products could impact the physical functioning of critical infrastructure in the oil and gas, water and electric utilities space, according to researchers. Researchers at Claroty found that VPNs used to provide remote access to...

Industrial VPN Flaws Could Let Attackers Target Critical Infrastructures

Cybersecurity researchers have discovered critical vulnerabilities in industrial VPN implementations primarily used to provide remote access to operational technology OT networks that could allow hackers to overwrite data, execute malicious code, and compromise industrial control systems ICS. A n...