109 matches found
EUVD-2018-17225
Malware in sbrugna...
EUVD-2018-3452
Malware in sbrugna...
EUVD-2018-3453
Malware in sbrugna...
EUVD-2018-3458
Malware in sbrugna...
CVE-2018-11422
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary configuration protocol that does not provide confidentiality, integrity, and authenticity security controls. All information is sent in plain text, and can be intercepted and modified. Any commands including devi...
CVE-2018-11421
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary monitoring protocol that does not provide confidentiality, integrity, and authenticity security controls. All information is sent in plain text, and can be intercepted and modified. The protocol is vulnerable to...
CVE-2018-11420
There is Memory corruption in the web interface of Moxa OnCell G3100-HSPA Series version 1.5 Build 17042015 and prio,r a different vulnerability than CVE-2018-11423...
Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility Incorrectly Specified Destination in a Communication Channel (CVE-2019-18242)
In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, frequent and multiple requests for short-term use may cause the web server to fail. This plugin only works with Tenable.ot. Please visit...
Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility Cleartext Transmission of Sensitive Information (CVE-2020-7003)
In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, sensitive information is transmitted over some web applications in clear text. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot f...
Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility Cleartext Storage of Sensitive Information (CVE-2019-18238)
In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, sensitive information is stored in configuration files without encryption, which may allow an attacker to access an administrative account. This plugin only works with Tenable.o...
CVE-2021-45815
Quectel UC20 UMTS/HSPA+ UC20 6.3.14 is affected by a Cross Site Scripting XSS vulnerability...
Cross site scripting
Quectel UC20 UMTS/HSPA+ UC20 6.3.14 is affected by a Cross Site Scripting XSS vulnerability...
CVE-2021-45815
CVE-2021-45815 affects Quectel UC20 UMTS/HSPA+ UC20 6.3.14. CNNVD describes a Cross Site Scripting (XSS) vulnerability arising from lack of valid filtering and escaping of the basicname in password_clip.cgi. No explicit exploit status or patch is provided in the connected documents; remediation d...
CVE-2021-45815
Quectel UC20 UMTS/HSPA+ UC20 6.3.14 is affected by a Cross Site Scripting XSS vulnerability...
The vulnerability of the web interface of Moxa OnCell G3100-HSPA series cellular IP switches allows a hacker to gain access to the device with root privileges.
The vulnerability of the web interface of Moxa OnCell G3100-HSPA series cellular IP switches is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain access to the device with root privileges...
The vulnerability in the web interface of Moxa OnCell G3100-HSPA series cellular IP switches allows a hacker to execute arbitrary code.
The vulnerability of the web interface of Moxa OnCell G3100-HSPA series cellular IP switches is related to improper access control. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary commands...
The vulnerability in the web interface of Moxa OnCell G3100-HSPA series cellular IP switches allows a hacker to trigger a service failure.
The vulnerability in the web interface of Moxa OnCell G3100-HSPA series cellular IP switches lies in the fact that the operation data is stored outside of the buffer in memory. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...
The vulnerability in the web interface of Moxa OnCell G3100-HSPA series cellular IP switches allows a hacker to execute arbitrary code.
The vulnerability of the web interface of Moxa OnCell G3100-HSPA series cellular IP switches is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
The vulnerability of the microprogrammed software of Moxa ioLogik 2542-HSPA remote input/output modules and the Moxa Ioxpress Configuration Utility, which involves storing critical information in the form of plain text, allows a perpetrator to intercept administrator credentials and other confidential information, thereby gaining access to the control system.
The vulnerability of the microprogrammed input/output module Moxa ioLogik 2542-HSPA and the Moxa Ioxpress Configuration Utility is related to the default use of the HTTP protocol during the implementation of the “Basic HTTP Authentication” method. Exploiting this vulnerability allows a malicious...
The vulnerability of the microprogramming software for Moxa ioLogik 2542-HSPA remote input/output modules and the Moxa Ioxpress Configuration Utility, which is related to the use of a unstable cryptographic algorithm, allows a intruder to gain unauthorized access to protected data.
The vulnerability of the microprogrammed input/output module Moxa ioLogik 2542-HSPA and the Moxa Ioxpress Configuration Utility lies in the use of a unstable cryptographic algorithm for storing and transmitting passwords. Exploiting this vulnerability allows an attacker operating remotely to gain...