6 matches found
Brute-force vulnerability in multiple Moxa products
Moxa OnCell G3110-HSPA and so on are products of China Moxa Moxa, of which OnCell G3110-HSPA is an industrial-grade IP gateway and OnCell 5104-HSPA is an industrial-grade cellular router. A brute force vulnerability exists in multiple Moxa products. An attacker could exploit this vulnerability to...
Plaintext password vulnerability in multiple Moxa products
Moxa OnCell G3110-HSPA and so on are products of China Moxa Moxa, of which OnCell G3110-HSPA is an industrial-grade IP gateway and OnCell 5104-HSPA is an industrial-grade cellular router. A plaintext password vulnerability exists in multiple Moxa products that stems from passwords being stored in...
CVE-2017-7915
An Improper Restriction of Excessive Authentication Attempts issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA Version 1.4 Build 11051315 and previous versions,...
CVE-2017-7913
CVE-2017-7913 affects Moxa OnCell devices (G3110-HSPA/G3110-HSDPA, G3150-HSDPA, 5104-HSDPA/HSPA, 5004-HSPA). Root cause: the device configuration files store passwords in plaintext, enabling potential credential exposure. Impact stated in sources ranges from partial confidentiality loss to authen...
CVE-2017-7915
CVE-2017-7915 affects multiple Moxa OnCell devices (G3110-HSPA, G3110-HSDPA, G3150-HSDPA, 5104-HSDPA, 5104-HSPA, 5004-HSPA). The issue is an Improper Restriction of Excessive Authentication Attempts, enabling brute-force attempts to determine authentication parameters and bypass authentication. A...
CVE-2017-7917
CVE-2017-7917 describes a Cross-Site Request Forgery in Moxa OnCell devices (G3110-HSPA, G3110-HSDPA, G3150-HSDPA, 5104-HSDPA/HSPA, 5004-HSPA). The issue arises because the application does not sufficiently verify that a request originated from the user they claim, allowing an attacker to modify ...