Vulnerabilities > Moxa > EDR G903 Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2021-02-03 CVE-2020-28144 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa products
Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower.
network
low complexity
moxa CWE-119
critical
9.8
2020-07-15 CVE-2020-14511 Out-of-bounds Write vulnerability in Moxa products
Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4).
network
low complexity
moxa CWE-787
critical
9.8