Vulnerabilities > Moxa > Oncell G3150 Hspa Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2019-07-03 CVE-2018-11423 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa products
There is Memory corruption in the web interface Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior, different vulnerability than CVE-2018-11420.
network
low complexity
moxa CWE-119
7.5
2019-07-03 CVE-2018-11427 Cross-Site Request Forgery (CSRF) vulnerability in Moxa products
CSRF tokens are not used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, which makes it possible to perform CSRF attacks on the device administrator.
network
low complexity
moxa CWE-352
8.8
2018-03-05 CVE-2018-5453 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa products
An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior.
network
low complexity
moxa CWE-119
7.5