Moxa Awk-3131a Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Moxa Awk-3131a Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (28)
CVE-2016-8363 — CVSS 10.0 (critical): An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127…
CVE-2017-14459 — CVSS 10.0 (critical): An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial…
CVE-2019-5138 — CVSS 9.9 (critical): An exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa AWK-3131A firmware version…
CVE-2016-8717 — CVSS 9.8 (critical): An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Wireless Access Point running firmware 1.1. The…
CVE-2016-8721 — CVSS 9.1 (critical): An exploitable OS Command Injection vulnerability exists in the web application 'ping' functionality of Moxa AWK-3131A Wireless Access…
CVE-2019-5140 — CVSS 8.8 (high): An exploitable command injection vulnerability exists in the iwwebs functionality of the Moxa AWK-3131A firmware version 1.13. A specially…
CVE-2016-8718 — CVSS 8.8 (high): An exploitable Cross-Site Request Forgery vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point…
CVE-2019-5162 — CVSS 8.8 (high): An exploitable improper access control vulnerability exists in the iw_webs account settings functionality of the Moxa AWK-3131A firmware…
CVE-2019-5153 — CVSS 8.8 (high): An exploitable remote code execution vulnerability exists in the iw_webs configuration parsing functionality of the Moxa AWK-3131A firmware…
CVE-2019-5143 — CVSS 8.8 (high): An exploitable format string vulnerability exists in the iw_console conio_writestr functionality of the Moxa AWK-3131A firmware version…
CVE-2019-5141 — CVSS 8.8 (high): An exploitable command injection vulnerability exists in the iw_webs functionality of the Moxa AWK-3131A firmware version 1.13. A specially…
CVE-2019-5136 — CVSS 8.8 (high): An exploitable privilege escalation vulnerability exists in the iw_console functionality of the Moxa AWK-3131A firmware version 1.13. A…
CVE-2016-8712 — CVSS 8.1 (high): An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1…
CVE-2016-8726 — CVSS 7.5 (high): An exploitable null pointer dereference vulnerability exists in the Web Application /forms/web_runScript iw_filename functionality of Moxa…
CVE-2016-8727 — CVSS 7.5 (high): An exploitable information disclosure vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point…
CVE-2019-5137 — CVSS 7.5 (high): The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network…
CVE-2019-5148 — CVSS 7.5 (high): An exploitable denial-of-service vulnerability exists in ServiceAgent functionality of the Moxa AWK-3131A, firmware version 1.13. A…
CVE-2016-8723 — CVSS 7.5 (high): An exploitable null pointer dereference exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running…
CVE-2016-8716 — CVSS 7.5 (high): An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless…
CVE-2019-5165 — CVSS 7.2 (high): An exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A…
CVE-2019-5142 — CVSS 7.2 (high): An exploitable command injection vulnerability exists in the hostname functionality of the Moxa AWK-3131A firmware version 1.13. A…
CVE-2019-5139 — CVSS 7.1 (high): An exploitable use of hard-coded credentials vulnerability exists in multiple iw_* utilities of the Moxa AWK-3131A firmware version 1.13…
CVE-2016-8362 — CVSS 6.5 (medium): An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127…
CVE-2016-8719 — CVSS 6.1 (medium): An exploitable reflected Cross-Site Scripting vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access…
CVE-2016-8722 — CVSS 5.3 (medium): An exploitable Information Disclosure vulnerability exists in the Web Application functionality of Moxa AWK-3131A Series Industrial IEEE…
CVE-2016-8724 — CVSS 5.3 (medium): An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point…
CVE-2016-8725 — CVSS 5.3 (medium): An exploitable information disclosure vulnerability exists in the Web Application functionality of the Moxa AWK-3131A wireless access point…
CVE-2016-8720 — CVSS 4.3 (medium): An exploitable HTTP Header Injection vulnerability exists in the Web Application functionality of the Moxa AWK-3131A Wireless Access Point…