Moxa Oncell_g3150-hspa_firmware
9 CVEs affecting Moxa Oncell_g3150-hspa_firmware. Latest disclosed: 2019-07-03. Critical: 5, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-11422 | Critical | 9.8 | 2019-07-03 | Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary configuration protocol that does not provide confidentiality, integrity, a… |
CVE-2018-11421 | Critical | 9.8 | 2019-07-03 | Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary monitoring protocol that does not provide confidentiality, integrity, and… |
CVE-2018-11420 | Critical | 9.8 | 2019-07-03 | There is Memory corruption in the web interface of Moxa OnCell G3100-HSPA Series version 1.5 Build 17042015 and prio,r a different vulnerability than CVE-2018-… |
CVE-2018-11426 | Critical | 9.8 | 2019-07-03 | A weak Cookie parameter is used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker can brute force param… |
CVE-2018-5455 | Critical | 9.8 | 2018-03-05 | A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The… |
CVE-2018-11427 | High | 8.8 | 2019-07-03 | CSRF tokens are not used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, which makes it possible to perform CSRF… |
CVE-2018-11423 | High | 7.5 | 2019-07-03 | There is Memory corruption in the web interface Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior, different vulnerability than CVE-2018-11420. |
CVE-2018-5453 | High | 7.5 | 2018-03-05 | An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker… |
CVE-2018-5449 | Medium | 6.5 | 2018-03-05 | A NULL Pointer Dereference issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application does not check for a NUL… |