CVE-2023-34215
published 2023-08-17CVE-2023-34215: TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the certification-generation function, which could potentially allow malicious users to execute remote code on affected devices.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | tn-5900_firmware | <= 3.3 | — |
| moxa | tn-5900_series | 1.0 – 3.3 | — |