Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
MoxaEdr-810 Firmware

9 matches found

CVE
CVEadded 2019/10/08 7:15 p.m.110 views

CVE-2019-10969

Moxa EDR 810, all versions 5.1 and prior, allows an authenticated attacker to abuse the ping feature to execute unauthorized commands on the router, which may allow an attacker to perform remote code execution.

7.2CVSS7.2AI score0.03928EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.52 views

CVE-2017-12124

An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in the web server crashing. An attacker can send a crafted URI to trigger this vulnerability.

7.5CVSS6.2AI score0.01224EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.48 views

CVE-2017-14438

Exploitable denial of service vulnerabilities exists in the Service Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted packet can cause a denial of service. An attacker can send a large packet to 4000/tcp to trigger this vulnerability.

7.5CVSS7.4AI score0.01045EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.47 views

CVE-2017-12128

An exploitable information disclosure vulnerability exists in the Server Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted TCP packet can cause information disclosure. An attacker can send a crafted TCP packet to trigger this vulnerability.

7.5CVSS7AI score0.01213EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.45 views

CVE-2017-14435

An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to "/MOXA_CFG.ini" without a cookie header ...

7.5CVSS7.3AI score0.02231EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.45 views

CVE-2017-14437

An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to "/MOXA_LOG.ini" without a cookie header ...

7.5CVSS7.3AI score0.02231EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.44 views

CVE-2017-14439

Exploitable denial of service vulnerabilities exists in the Service Agent functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted packet can cause a denial of service. An attacker can send a large packet to 4001/tcp to trigger this vulnerability.

7.5CVSS7.4AI score0.01045EPSS
CVE
CVEadded 2018/05/14 8:29 p.m.41 views

CVE-2017-14436

An exploitable denial of service vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP URI can cause a null pointer dereference resulting in denial of service. An attacker can send a GET request to "/MOXA_CFG2.ini" without a cookie header...

7.5CVSS7.3AI score0.02231EPSS
CVE
CVEadded 2017/02/13 9:59 p.m.36 views

CVE-2016-8346

An issue was discovered in Moxa EDR-810 Industrial Secure Router. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access configuration and log files (PRIVILEGE ESCALATION).

7.5CVSS7.4AI score0.00163EPSS