CVE-2024-9140
published 2025-01-03CVE-2024-9140: Moxa’s cellular routers, secure routers, and network security appliances are affected by a critical vulnerability, CVE-2024-9140. This vulnerability allows OS…
critical9.3CVSS 4.0
AVNACLATNPRNUINVCHVIHVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
Moxa’s cellular routers, secure routers, and network security appliances are affected by a critical vulnerability, CVE-2024-9140. This vulnerability allows OS command injection due to improperly restricted commands, potentially enabling attackers to execute arbitrary code. This poses a significant risk to the system’s security and functionality.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | edf-g1002-bp_series | 1.0 – 3.13.1 | — |
| moxa | edr-8010_series | 1.0 – 3.13.1 | — |
| moxa | edr-g9004_series | 1.0 – 3.13.1 | — |
| moxa | edr-g9010_series | 1.0 – 3.13.1 | — |
| moxa | nat-102_series | 1.0 – 1.0.5 | — |
| moxa | oncell_g4302-lte4_series | 1.0 – 3.13 | — |
| moxa | tn-4900_series | 1.0 – 3.13 | — |