Vulnerabilities (CVE)

Vendor filter

Moxa Subscribe

Product filter

Oncell G3150-hspa-t Firmware Subscribe

Filter

9 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-5455 1 Moxa 4 Oncell G3110-hspa-t Firmware, Oncell G3110-hspa Firmware, Oncell G3150-hspa-t Firmware and 1 more 2019-10-09 7.5
A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only digits, allowing an attacker...
CVE-2018-5453 1 Moxa 4 Oncell G3110-hspa-t Firmware, Oncell G3110-hspa Firmware, Oncell G3150-hspa-t Firmware and 1 more 2019-10-09 7.8
An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker may be able to edit the element of an HTTP request, causing the device to become unavailable.
CVE-2018-5449 1 Moxa 4 Oncell G3110-hspa-t Firmware, Oncell G3110-hspa Firmware, Oncell G3150-hspa-t Firmware and 1 more 2019-10-09 3.3
A NULL Pointer Dereference issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application does not check for a NULL value, allowing for an attacker to perform a denial of service attack.
CVE-2018-11422 1 Moxa 2 Oncell G3150-hspa-t Firmware, Oncell G3150-hspa Firmware 2019-07-10 7.5
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary configuration protocol that does not provide confidentiality, integrity, and authenticity security controls. All information is sent in plain text, and can be...
CVE-2018-11421 1 Moxa 2 Oncell G3150-hspa-t Firmware, Oncell G3150-hspa Firmware 2019-07-10 5.0
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary monitoring protocol that does not provide confidentiality, integrity, and authenticity security controls. All information is sent in plain text, and can be...
CVE-2018-11426 1 Moxa 2 Oncell G3150-hspa-t Firmware, Oncell G3150-hspa Firmware 2019-07-10 7.5
A weak Cookie parameter is used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker can brute force parameters required to bypass authentication and access the web interface to use all its...
CVE-2018-11423 1 Moxa 2 Oncell G3150-hspa-t Firmware, Oncell G3150-hspa Firmware 2019-07-10 7.8
There is Memory corruption in the web interface Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior, different vulnerability than CVE-2018-11420.
CVE-2018-11420 1 Moxa 2 Oncell G3150-hspa-t Firmware, Oncell G3150-hspa Firmware 2019-07-10 7.5
There is Memory corruption in the web interface of Moxa OnCell G3100-HSPA Series version 1.5 Build 17042015 and prio,r a different vulnerability than CVE-2018-11423.
CVE-2018-11427 1 Moxa 2 Oncell G3150-hspa-t Firmware, Oncell G3150-hspa Firmware 2019-07-10 6.8
CSRF tokens are not used in the web application of Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, which makes it possible to perform CSRF attacks on the device administrator.