Edr-810 Firmware Security Vulnerabilities and Issues — Edr-810 Firmware CVE List

Lucene search

MoxaEdr-810 Firmware

7 matches found

CVE•added 2018/05/14 8:29 p.m.•52 views

CVE-2017-14433

An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation resulting in root shell. An attacker can inject OS commands into the remoteNetwork0= parameter in the "/goform/ne...

9CVSS9AI score0.00713EPSS

CVE•added 2018/05/14 8:29 p.m.•49 views

CVE-2017-12125

9CVSS9AI score0.00713EPSS

CVE•added 2018/05/14 8:29 p.m.•47 views

CVE-2017-12120

An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. A specially crafted HTTP POST can cause a privilege escalation, resulting in a root shell. An attacker can inject OS commands into the ip= parm in the "/goform/net_WebPingGetVa...

9CVSS8.7AI score0.00713EPSS

CVE•added 2018/05/14 8:29 p.m.•47 views

CVE-2017-12121

9CVSS9AI score0.00713EPSS

CVE•added 2018/05/14 8:29 p.m.•43 views

CVE-2017-14434

9CVSS9AI score0.00713EPSS

CVE•added 2018/05/14 8:29 p.m.•41 views

CVE-2017-14432

9CVSS9AI score0.00646EPSS

CVE•added 2018/09/20 8:29 p.m.•32 views

CVE-2018-16282

A command injection vulnerability in the web server functionality of Moxa EDR-810 V4.2 build 18041013 allows remote attackers to execute arbitrary OS commands with root privilege via the caname parameter to the /xml/net_WebCADELETEGetValue URI.

9CVSS9.2AI score0.04098EPSS