Vulnerabilities > Moxa > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-06-07 | CVE-2018-10699 | OS Command Injection vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 6.8 |
| 2019-06-07 | CVE-2018-10696 | Cross-Site Request Forgery (CSRF) vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 6.8 |
| 2019-06-07 | CVE-2018-10695 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 6.8 |
| 2019-06-07 | CVE-2018-10693 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 6.8 |
| 2019-06-07 | CVE-2018-10692 | Cross-site Scripting vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 4.3 |
| 2019-06-07 | CVE-2018-10691 | Improper Access Control vulnerability in Moxa Awk-3121 Firmware 1.14 An issue was discovered on Moxa AWK-3121 1.14 devices. | 5.0 |
| 2019-04-15 | CVE-2019-6526 | Cleartext Transmission of Sensitive Information vulnerability in Moxa products Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative password. | 5.0 |
| 2019-03-21 | CVE-2015-6458 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa Softcms 1.2/1.3 Moxa SoftCMS 1.3 and prior is susceptible to a buffer overflow condition that may crash or allow remote code execution. | 6.8 |
| 2019-03-21 | CVE-2015-6457 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa Softcms 1.2/1.3 Moxa SoftCMS 1.3 and prior is susceptible to a buffer overflow condition that may crash or allow remote code execution. | 6.8 |
| 2019-03-21 | CVE-2016-5819 | Cross-site Scripting vulnerability in Moxa products Moxa G3100V2 Series, editions prior to Version 2.8, and OnCell G3111/G3151/G3211/G3251 Series, editions prior to Version 1.7 allows a reflected cross-site scripting attack which may allow an attacker to execute arbitrary script code in the user’s browser within the trust relationship between their browser and the server. | 4.3 |