CVE-2024-4639
published 2024-06-25CVE-2024-4639: OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in IPSec configuration. An…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in IPSec configuration. An attacker could modify the intended commands sent to target functions, which could cause malicious users to execute unauthorized commands.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | oncell_g3150a-lte_series | 1.0 – 1.7.7 | — |
| moxa | oncell_g3470a-lte-eu-t_firmware | <= 1.7.7 | — |
| moxa | oncell_g3470a-lte-eu_firmware | <= 1.7.7 | — |
| moxa | oncell_g3470a-lte-us-t_firmware | <= 1.7.7 | — |
| moxa | oncell_g3470a-lte-us_firmware | <= 1.7.7 | — |