CVE-2024-4641
published 2024-06-25CVE-2024-4641: OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to accepting a format string from an external source as an…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to accepting a format string from an external source as an argument. An attacker could modify an externally controlled format string to cause a memory leak and denial of service.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | oncell_g3150a-lte_series | 1.0 – 1.7.7 | — |
| moxa | oncell_g3470a-lte-eu-t_firmware | <= 1.7.7 | — |
| moxa | oncell_g3470a-lte-eu_firmware | <= 1.7.7 | — |
| moxa | oncell_g3470a-lte-us-t_firmware | <= 1.7.7 | — |
| moxa | oncell_g3470a-lte-us_firmware | <= 1.7.7 | — |