Moxa Edr-G903-T Firmware vulnerabilities

CVE-2023-4452 [HIGH] CWE-120 CVE-2023-4452: A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vuln A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot.

CVE-2020-28144 [CRITICAL] CWE-119 CVE-2020-28144: Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series F Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code execution.

CVE-2020-14511 [CRITICAL] CWE-121 CVE-2020-14511: Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4).