Moxa Edr-G903-T Firmware vulnerabilities
3 known vulnerabilities affecting moxa/edr-g903-t_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2023-4452HIGHCVSS 7.5fixed in 5.7.212023-11-01
CVE-2023-4452 [MEDIUM] CWE-120 CVE-2023-4452: A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vuln
A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot.
nvd
CVE-2020-28144CRITICALCVSS 9.8≤ 5.52021-02-03
CVE-2020-28144 [CRITICAL] CWE-119 CVE-2020-28144: Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series F
Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code execution.
nvd
CVE-2020-14511CRITICALCVSS 9.8≤ 5.42020-07-15
CVE-2020-14511 [CRITICAL] CWE-121 CVE-2020-14511: Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the
Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4).
nvd