Vulnerabilities > Moxa > Oncell G3150 Hspa Firmware > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-07-03 | CVE-2018-11421 | Cleartext Transmission of Sensitive Information vulnerability in Moxa products Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary monitoring protocol that does not provide confidentiality, integrity, and authenticity security controls. | 5.0 |
2019-07-03 | CVE-2018-11427 | Cross-Site Request Forgery (CSRF) vulnerability in Moxa products CSRF tokens are not used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, which makes it possible to perform CSRF attacks on the device administrator. | 6.8 |