Vulnerabilities > Moxa > EDR G903 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-01 | CVE-2023-4452 | Classic Buffer Overflow vulnerability in Moxa products A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. | 7.5 |
| 2021-02-03 | CVE-2020-28144 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa products Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. | 9.8 |
| 2020-07-15 | CVE-2020-14511 | Out-of-bounds Write vulnerability in Moxa products Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4). | 9.8 |
| 2016-05-31 | CVE-2016-0879 | Information Exposure Through Log Files vulnerability in Moxa Edr-G903 Firmware Moxa Secure Router EDR-G903 devices before 3.4.12 do not delete copies of configuration and log files after completing the import function, which allows remote attackers to obtain sensitive information by requesting these files at an unspecified URL. | 7.5 |
| 2016-05-31 | CVE-2016-0878 | Unspecified vulnerability in Moxa Edr-G903 Firmware Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to cause a denial of service (cold start) by sending two crafted ping requests. | 7.5 |
| 2016-05-31 | CVE-2016-0877 | Missing Release of Resource after Effective Lifetime vulnerability in Moxa Edr-G903 Firmware Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a denial of service (memory consumption) by executing the ping function. | 7.5 |
| 2016-05-31 | CVE-2016-0876 | Cleartext Storage of Sensitive Information vulnerability in Moxa Edr-G903 Firmware Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to discover cleartext passwords by reading a configuration file. | 7.5 |
| 2016-05-31 | CVE-2016-0875 | Information Exposure Through Log Files vulnerability in Moxa Edr-G903 Firmware Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to read configuration and log files via a crafted URL. | 7.5 |