Moxa Awk-3131a

28 CVEs affecting Moxa Awk-3131a. Latest disclosed: 2020-02-25. Critical: 5, High: 17.

Top CVEs affecting Moxa Awk-3131a
CVESeverityScorePublishedSummary
CVE-2017-14459Critical10.02018-04-11An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wi…
CVE-2016-8363Critical10.02017-02-13An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2…
CVE-2019-5138Critical9.92020-02-25An exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa AWK-3131A firmware version 1.13. A specially cra…
CVE-2016-8717Critical9.82018-04-02An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Wireless Access Point running firmware 1.1. The device operating system…
CVE-2016-8721Critical9.12017-04-20An exploitable OS Command Injection vulnerability exists in the web application 'ping' functionality of Moxa AWK-3131A Wireless Access Points running firmware…
CVE-2019-5162High8.82020-02-25An exploitable improper access control vulnerability exists in the iw_webs account settings functionality of the Moxa AWK-3131A firmware version 1.13. A specia…
CVE-2019-5153High8.82020-02-25An exploitable remote code execution vulnerability exists in the iw_webs configuration parsing functionality of the Moxa AWK-3131A firmware version 1.13. A spe…
CVE-2019-5143High8.82020-02-25An exploitable format string vulnerability exists in the iw_console conio_writestr functionality of the Moxa AWK-3131A firmware version 1.13. A specially craft…
CVE-2019-5141High8.82020-02-25An exploitable command injection vulnerability exists in the iw_webs functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted iw_serverip…
CVE-2019-5140High8.82020-02-25An exploitable command injection vulnerability exists in the iwwebs functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted diagnostic s…
CVE-2019-5136High8.82020-02-25An exploitable privilege escalation vulnerability exists in the iw_console functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted menu…
CVE-2016-8718High8.82017-04-12An exploitable Cross-Site Request Forgery vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1…
CVE-2016-8712High8.12017-04-13An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1. The device uses one no…
CVE-2019-5148High7.52020-02-25An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa AWK-3131A, firmware version 1.13. A specially crafted packet ca…
CVE-2019-5137High7.52020-02-25The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa…
CVE-2016-8727High7.52017-04-13An exploitable information disclosure vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point. Retrieving a series of…
CVE-2016-8726High7.52017-04-13An exploitable null pointer dereference vulnerability exists in the Web Application /forms/web_runScript iw_filename functionality of Moxa AWK-3131A Wireless A…
CVE-2016-8723High7.52017-04-13An exploitable null pointer dereference exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. Any HTTP GET…
CVE-2016-8716High7.52017-04-12An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running fir…
CVE-2019-5165High7.22020-02-25An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A specially configured device…