102 matches found
EUVD-2018-2768
Malware in sbrugna...
EUVD-2018-2774
Malware in sbrugna...
EUVD-2018-2762
Malware in sbrugna...
EUVD-2018-2761
Malware in sbrugna...
EUVD-2018-2767
Malware in sbrugna...
EUVD-2018-2770
Malware in sbrugna...
EUVD-2018-2771
Malware in sbrugna...
EUVD-2018-2766
Malware in sbrugna...
EUVD-2018-2772
Malware in sbrugna...
EUVD-2018-2765
Malware in sbrugna...
EUVD-2018-2763
Malware in sbrugna...
EUVD-2018-2769
Malware in sbrugna...
EUVD-2018-2773
Malware in sbrugna...
EUVD-2018-2764
Malware in sbrugna...
Moxa AWK-3121 Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2018-10695)
An issue was discovered on Moxa AWK-3121 1.14 devices. It provides alert functionality so that an administrator can send emails to his/her account when there are changes to the device's network. However, the same functionality allows an attacker to execute commands on the device. The POST...
Moxa AWK-3121 Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2018-10693)
An issue was discovered on Moxa AWK-3121 1.14 devices. It provides ping functionality so that an administrator can execute ICMP calls to check if the network is working correctly. However, the same functionality allows an attacker to execute commands on the device. The POST parameter srvName is...
Moxa AWK-3121 Improper Neutralization of Special Elements Used in a Command (CVE-2018-10697)
An issue was discovered on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides ping functionality so that an administrator can execute ICMP calls to check if the network is working correctly. However, the same functionality allows an attacker to execute commands on the device. The POST paramet...
Moxa AWK-3121 Sensitive Cookie Without Httponly Flag (CVE-2018-10692)
An issue was discovered on Moxa AWK-3121 1.14 devices. The session cookie Password508 does not have an HttpOnly flag. This allows an attacker who is able to execute a cross-site scripting attack to steal the cookie very easily. This plugin only works with Tenable.ot. Please visit...
Moxa AWK-3121 Cleartext Transmission of Sensitive Information (CVE-2018-10694)
An issue was discovered on Moxa AWK-3121 1.14 devices. The device provides a Wi-Fi connection that is open and does not use any encryption mechanism by default. An administrator who uses the open wireless connection to set up the device can allow an attacker to sniff the traffic passing between t...
Moxa AWK-3121 Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2018-10703)
An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any issues. However, the same functionality allows an attacker to execute commands on the device. The POST parameter iwserverip is susceptible to...