CVE-2021-39279

CWE-78 — OS Command Injection3 documents3 sources

Severity

8.8HIGH

EPSS

5.9%

top 9.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Moxa Oncell G3470a-lte-eu-t Firmware Moxa Oncell G3470a-lte-eu Firmware Moxa Tap-323-eu-ct-t Firmware +9 more

Timeline

PublishedSep 7

Latest updateMay 24

Description

Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. This affects WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323-US-CT-T 1.3, TAP-323-JP-CT-T 1.3, WDR-3124A-EU 2.3, WDR-3124A-EU-T 2.3, WDR-3124A-US 2.3, and WDR-3124A-US-T 2.3.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages12 packages

▶NVDmoxa/wdr-3124a-eu_firmware2.3

▶NVDmoxa/wdr-3124a-us_firmware2.3

▶NVDmoxa/wdr-3124a-eu-t_firmware2.3

▶NVDmoxa/wdr-3124a-us-t_firmware2.3

▶NVDmoxa/oncell_g3470a-lte-eu_firmware1.7

🔴Vulnerability Details

GHSA

GHSA-h724-3h22-3p4x: Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP↗2022-05-24

▶

CVEList

CVE-2021-39279: Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP↗2021-09-07

▶