Moxa Pt-G7828 Series vulnerabilities

CVE-2024-7695 [HIGH] CWE-787 CVE-2024-7695: Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused Multiple switches are affected by an out-of-bounds write vulnerability. This vulnerability is caused by insufficient input validation, which allows data to be written to memory outside the bounds of the buffer. Successful exploitation of this vulnerability could result in a denial-of-service attack.

CVE-2024-12297 [CRITICAL] CWE-656 CVE-2024-12297: Moxa’s Ethernet switch is vulnerable to an authentication bypass because of flaws in its authorizati Moxa’s Ethernet switch is vulnerable to an authentication bypass because of flaws in its authorization mechanism. Although both client-side and back-end server verification are involved in the process, attackers can exploit weaknesses in its implementation. These vulnerabilities may enable brute-force attacks to guess valid credentials or MD5 coll

CVE-2024-9137 [HIGH] CWE-306 CVE-2024-9137: The affected product lacks an authentication check when sending commands to the server via the Moxa The affected product lacks an authentication check when sending commands to the server via the Moxa service. This vulnerability allows an attacker to execute specified commands, potentially leading to unauthorized downloads or uploads of configuration files and system compromise.