Lucene search
K

260 matches found

CNNVD
CNNVD
added 2024/06/25 12:0 a.m.5 views

MOXA OnCell G3470A-LTE 安全漏洞

MOXA OnCell G3470A-LTE is a series of cellular gateway/router from MOXA China. A security vulnerability exists in MOXA OnCell G3470A-LTE v1.7.7 and earlier firmware versions, which originates from accepting a format string from an external source as a parameter, and can be exploited by an attacke...

9.8CVSS6.6AI score0.00342EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/25 12:0 a.m.5 views

MOXA OnCell G3470A-LTE 安全漏洞

MOXA OnCell G3470A-LTE is a series of cellular gateway/router from MOXA China. A command injection vulnerability exists in MOXA OnCell G3470A-LTE v1.7.7 and earlier firmware versions, which stems from the lack of a neutralization input in the Web Key Upload function, and can be exploited by an...

8.8CVSS7.8AI score0.0044EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/06/21 12:0 a.m.5 views

PT-2024-4285 · Moxa · Oncell G3470A-Lte Series

Name of the Vulnerable Software and Affected Versions: OnCell G3470A-LTE Series firmware versions v1.7.7 and prior Description: The issue is related to a lack of neutralized inputs in the web key upload function, allowing an attacker to modify intended commands sent to target functions. This coul...

8.8CVSS8.4AI score0.0044EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/01/17 12:0 a.m.6 views

The vulnerability of the microprogramming software in the Moxa OnCell G3150A-LTE industrial LTE modem series arises from improper limitation of the number of displayed layers or frames on the user interface. This allows attackers to carry out a clickjacking attack.

The vulnerability of the microprogramming software in the Moxa OnCell G3150A-LTE industrial LTE modem series lies in improper restrictions on the layers or frames displayed by the user interface. Exploiting this vulnerability allows a remote attacker to carry out a clickjacking attack...

5.4CVSS6.4AI score0.00253EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2023/12/31 10:15 a.m.20 views

CVE-2023-6093

A clickjacking vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. This vulnerability is caused by incorrectly restricts frame objects, which can lead to user confusion about which interface the user is interacting with. This vulnerability may lead the...

6.1CVSS0.00253EPSS
Exploits0References1
OSV
OSV
added 2023/12/31 10:15 a.m.4 views

CVE-2023-6094

A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...

5.3CVSS5.7AI score
Exploits0References1
OSV
OSV
added 2023/12/31 10:15 a.m.4 views

CVE-2023-6093

A clickjacking vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. This vulnerability is caused by incorrectly restricts frame objects, which can lead to user confusion about which interface the user is interacting with. This vulnerability may lead the...

6.1CVSS5.7AI score0.00253EPSS
Exploits0References1
Prion
Prion
added 2023/12/31 10:15 a.m.14 views

Information disclosure

A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...

5CVSS6.7AI score0.0024EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/12/31 10:15 a.m.18 views

Design/Logic Flaw

A clickjacking vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. This vulnerability is caused by incorrectly restricts frame objects, which can lead to user confusion about which interface the user is interacting with. This vulnerability may lead the...

5.8CVSS7AI score0.00253EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/31 9:57 a.m.13 views

CVE-2023-6094 OnCell G3150A-LTE Series: Web Server Transmits Cleartext Credentials

A vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. The vulnerability results from lack of protection for sensitive information during transmission. An attacker eavesdropping on the traffic between the web browser and server may obtain sensitive...

5.3CVSS6.5AI score0.0024EPSS
Exploits0References1
CVE
CVE
added 2023/12/31 9:57 a.m.51 views

CVE-2023-6094

The CVE-2023-6094 entry describes a vulnerability in OnCell G3150A-LTE Series firmware versions prior to v1.3 where sensitive information is transmitted without protection. An attacker could eavesdrop on traffic between a web browser and the device/server to obtain sensitive data. Affected produc...

5.3CVSS5.1AI score0.0024EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/12/31 9:53 a.m.23 views

CVE-2023-6093 OnCell G3150A-LTE Series: Clickjacking Vulnerability

A clickjacking vulnerability has been identified in OnCell G3150A-LTE Series firmware versions v1.3 and prior. This vulnerability is caused by incorrectly restricts frame objects, which can lead to user confusion about which interface the user is interacting with. This vulnerability may lead the...

5.3CVSS6.2AI score0.00253EPSS
Exploits0References1
CVE
CVE
added 2023/12/31 9:53 a.m.49 views

CVE-2023-6093

The CVE-2023-6093 is linked to OnCell G3150A-LTE Series firmware v1.3 and earlier, where the vulnerability stems from improperly restricted frame objects, enabling clickjacking and potentially confusing users into interacting with the attacker’s interface. Affected component: frame embedding with...

6.1CVSS5.6AI score0.00253EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/12/31 12:0 a.m.6 views

OnCell G3150A-LTE Security Vulnerability

Moxa OnCell G3150A-LTE is a reliable and secure LTE gateway from Moxa China. A security vulnerability exists in OnCell G3150A-LTE v1.3 and earlier versions, which stems from the lack of protection of sensitive information during transmission, and an attacker may be able to obtain sensitive...

5.3CVSS6.4AI score0.0024EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/29 12:0 a.m.4 views

PT-2023-8289 · Moxa · Oncell G3150A-Lte Series

Name of the Vulnerable Software and Affected Versions: OnCell G3150A-LTE Series firmware versions v1.3 and prior Description: A clickjacking vulnerability has been identified, caused by incorrectly restricting frame objects. This can lead to user confusion about which interface the user is...

6.1CVSS6.2AI score0.00253EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2023/12/29 12:0 a.m.5 views

PT-2023-8290 · Moxa · Oncell G3150A-Lte Series

Name of the Vulnerable Software and Affected Versions: OnCell G3150A-LTE Series firmware versions prior to v1.3 Description: The issue is related to the transmission of data in an open manner, which could allow a remote attacker to obtain sensitive information. This could be achieved through...

5.3CVSS5AI score0.0024EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.15 views

Moxa OnCell Arbitrary OS Commands Execution (CVE-2016-8363)

An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series...

10CVSS8.8AI score0.0185EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.21 views

Moxa OnCell Improper Authentication (CVE-2016-8362)

An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series...

6.5CVSS7AI score0.01038EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/11/14 12:0 a.m.7 views

The vulnerability of the microprogramming software used in industrial LTE modems of the Moxa OnCell G3150A-LTE, OnCell G3470A-LTE, and WDR-3124A series, as well as the microprogramming software used in wireless access points for industrial systems of the Moxa AWK-3131A, AWK-4131A, AWK-1131A, and AWK-1137C models, is related to improper verification of the cryptographic signature. This vulnerability allows attackers to perform cross-site scripting attacks.

The vulnerability of the microprogramming software used in industrial LTE modems of the Moxa OnCell G3150A-LTE, OnCell G3470A-LTE, and WDR-3124A series, as well as the microprogramming software used in wireless access points for industrial systems of the Moxa AWK-3131A, AWK-4131A, AWK-1131A, and...

8.6CVSS5.2AI score
Exploits0References5Affected Software9
BDU FSTEC
BDU FSTEC
added 2022/11/14 12:0 a.m.9 views

The vulnerability of the microprogramming software used in industrial LTE modems of the Moxa OnCell G3150A-LTE, OnCell G3470A-LTE, and WDR-3124A series, as well as the microprogramming software used in wireless access points for industrial systems of the Moxa AWK-3131A, AWK-4131A, AWK-1131A, and AWK-1137C models, is related to the unencrypted storage of critical information. This vulnerability allows attackers to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the microprogramming software used in industrial LTE modems of the Moxa OnCell G3150A-LTE, OnCell G3470A-LTE, and WDR-3124A series, as well as the microprogramming software used in wireless access points for industrial systems of the Moxa AWK-3131A, AWK-4131A, AWK-1131A, and...

9.4CVSS5.5AI score
Exploits0References5Affected Software9
Rows per page
Query Builder