Vulnerabilities > Moxa
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-03 | CVE-2018-11427 | Cross-Site Request Forgery (CSRF) vulnerability in Moxa products CSRF tokens are not used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, which makes it possible to perform CSRF attacks on the device administrator. | 8.8 |
| 2019-07-03 | CVE-2018-11426 | Improper Authentication vulnerability in Moxa products A weak Cookie parameter is used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. | 9.8 |
| 2019-06-07 | CVE-2018-10703 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |
| 2019-06-07 | CVE-2018-10702 | OS Command Injection vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |
| 2019-06-07 | CVE-2018-10701 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |
| 2019-06-07 | CVE-2018-10700 | Cross-site Scripting vulnerability in Moxa Awk-3121 Firmware 1.19 An issue was discovered on Moxa AWK-3121 1.19 devices. | 6.1 |
| 2019-06-07 | CVE-2018-10699 | OS Command Injection vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |
| 2019-06-07 | CVE-2018-10698 | Missing Encryption of Sensitive Data vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 9.8 |
| 2019-06-07 | CVE-2018-10697 | OS Command Injection vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |
| 2019-06-07 | CVE-2018-10696 | Cross-Site Request Forgery (CSRF) vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 8.8 |