Vulnerabilities > Moxa > AWK 3131A Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-02-25 CVE-2019-5138 OS Command Injection vulnerability in Moxa Awk-3131A Firmware 1.13
An exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa AWK-3131A firmware version 1.13.
network
low complexity
moxa CWE-78
critical
 9.9
9.9
2018-04-11 CVE-2017-14459 OS Command Injection vulnerability in Moxa Awk-3131A Firmware
An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client in firmware versions 1.4 to 1.7 (current).
network
low complexity
moxa CWE-78
critical
 9.8
9.8
2018-04-02 CVE-2016-8717 Use of Hard-coded Credentials vulnerability in Moxa Awk-3131A Firmware 1.1
An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Wireless Access Point running firmware 1.1.
network
low complexity
moxa CWE-798
critical
 9.8
9.8
2017-04-20 CVE-2016-8721 OS Command Injection vulnerability in Moxa Awk-3131A Firmware 1.1
An exploitable OS Command Injection vulnerability exists in the web application 'ping' functionality of Moxa AWK-3131A Wireless Access Points running firmware 1.1.
network
low complexity
moxa CWE-78
critical
 9.1
9.1
2017-02-13 CVE-2016-8363 Permissions, Privileges, and Access Controls vulnerability in Moxa products
An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series, AWK-3131/4131 Series, and AWK-5222/6222 Series.
network
low complexity
moxa CWE-264
critical
 10.0
10