Vulnerabilities > Moxa > Oncell G3100V2 Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-03-21 | CVE-2016-5819 | Cross-site Scripting vulnerability in Moxa products Moxa G3100V2 Series, editions prior to Version 2.8, and OnCell G3111/G3151/G3211/G3251 Series, editions prior to Version 1.7 allows a reflected cross-site scripting attack which may allow an attacker to execute arbitrary script code in the user’s browser within the trust relationship between their browser and the server. | 6.1 |
| 2016-08-24 | CVE-2016-5812 | Information Exposure vulnerability in Moxa Oncell G3001 Firmware and Oncell G3100V2 Firmware Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 use cleartext password storage, which makes it easier for local users to obtain sensitive information by reading a configuration file. | 3.3 |
| 2016-08-24 | CVE-2016-5799 | Improper Authorization vulnerability in Moxa Oncell G3001 Firmware and Oncell G3100V2 Firmware Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 do not properly restrict authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack. | 9.8 |