Lucene search
+L

30 matches found

cve
cve
added 2020/02/25 3:38 p.m.84 views

CVE-2019-5137

The Moxa AWK-3131A Series (firmware 1.13) ServiceAgent uses a hard-coded cryptographic key, enabling decryption of network traffic to/from the device. CVE-2019-5137 (CVSSv3 7.5) details the root cause and impact (confidentiality HIGH). A vendor patch is available; apply the security update from M...

7.5CVSS7.5AI score0.02362EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2020/02/25 3:38 p.m.38 views

CVE-2019-5137

The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa AWK-3131A firmware version 1.13...

7.5CVSS7.5AI score0.02362EPSS
Exploits1References1
cnvd
cnvd
added 2020/02/25 12:0 a.m.2 views

Moxa AWK-3131A ServiceAgent Trust Management Issue Vulnerability

Moxa AWK-3131A is a wireless access device from Moxa. A trust management issue vulnerability exists in the ServiceAgent binary in the Moxa AWK-3131A using firmware version 1.13. An attacker could exploit this vulnerability to decrypt captured traffic...

7.5CVSS6.8AI score0.02362EPSS
Exploits1References1
talos
talos
added 2020/02/24 12:0 a.m.59 views

Moxa AWK-3131A ServiceAgent denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa AWK-3131A, firmware version 1.13. A specially crafted packet can cause an integer underflow, triggering a large memcpy that will access unmapped or out-of-bounds memory. An attacker can send th...

7.5CVSS7.8AI score0.0258EPSS
Exploits1
seebug
seebug
added 2017/09/19 12:0 a.m.44 views

Moxa AWK-3131A serviceAgent Information Disclosure Vulnerability(CVE-2016-8724)

Summary An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive information. Tested Versions Moxa AWK-3131A...

5CVSS5.3AI score0.09265EPSS
Exploits2
cnvd
cnvd
added 2017/05/19 12:0 a.m.7 views

Moxa AWK-3131A Wireless Access Point Information Disclosure Vulnerability

Moxa AWK-3131A Wireless Access Point is a wireless switch from Moxa China. An information disclosure vulnerability exists in the serviceAgent feature of the Moxa AWK-3131A Wireless Access Point using firmware version 1.1. The vulnerability can be exploited to retrieve sensitive information via a...

5.3CVSS6.3AI score0.09265EPSS
Exploits2References1
osv
osv
added 2017/04/13 7:59 p.m.5 views

CVE-2016-8724

An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive information...

5.3CVSS5.8AI score0.09265EPSS
Exploits2References1
ptsecurity
ptsecurity
added 2017/04/13 12:0 a.m.5 views

PT-2017-9766 · Moxa · Moxa Awk-3131A Wireless Access Point

Name of the Vulnerable Software and Affected Versions: Moxa AWK-3131A Wireless Access Point version 1.1 Description: An exploitable information disclosure issue exists in the serviceAgent functionality. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive...

5.3CVSS5AI score0.09265EPSS
Exploits2References3
openvas
openvas
added 2017/04/11 12:0 a.m.12 views

Moxa AWK Series serviceAgent Information Disclosure Vulnerability

Moxa AWK series wireless access points are prone to an information disclosure vulnerability in the serviceAgent. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

5.3CVSS5.2AI score0.09265EPSS
Exploits2References1
talos
talos
added 2017/04/10 12:0 a.m.36 views

Moxa AWK-3131A serviceAgent Information Disclosure Vulnerability

Summary An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an attacker to retrieve potentially sensitive information. Tested Versions Moxa AWK-3131A...

5.3CVSS5.2AI score0.09265EPSS
Exploits2
Rows per page
Query Builder