Moxa Awk-3121_firmware
14 CVEs affecting Moxa Awk-3121_firmware. Latest disclosed: 2019-06-07. Critical: 1, High: 11.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-10698 | Critical | 9.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The device enables an unencrypted TELNET service by default. This allows an attacker who has been able t… |
CVE-2018-10703 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any iss… |
CVE-2018-10702 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any iss… |
CVE-2018-10701 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. It provides functionality so that an administrator can run scripts on the device to troubleshoot any iss… |
CVE-2018-10699 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides certfile upload functionality so that an administrator can upload a certifica… |
CVE-2018-10697 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The Moxa AWK 3121 provides ping functionality so that an administrator can execute ICMP calls to check i… |
CVE-2018-10696 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The device provides a web interface to allow an administrator to manage the device. However, this interf… |
CVE-2018-10695 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. It provides alert functionality so that an administrator can send emails to his/her account when there a… |
CVE-2018-10693 | High | 8.8 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. It provides ping functionality so that an administrator can execute ICMP calls to check if the network i… |
CVE-2018-10694 | High | 8.1 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The device provides a Wi-Fi connection that is open and does not use any encryption mechanism by default… |
CVE-2018-10690 | High | 8.1 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The device by default allows HTTP traffic thus providing an insecure communication mechanism for a user… |
CVE-2018-10691 | High | 7.5 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. It is intended that an administrator can download /systemlog.log (the system log). However, the same fun… |
CVE-2018-10700 | Medium | 6.1 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.19 devices. It provides functionality so that an administrator can change the name of the device. However, the same… |
CVE-2018-10692 | Medium | 6.1 | 2019-06-07 | An issue was discovered on Moxa AWK-3121 1.14 devices. The session cookie "Password508" does not have an HttpOnly flag. This allows an attacker who is able to… |