A vulnerability was found in Moxa WAC-2004, WAC-1001, WAC-1001-T, OnCell G3470A-LTE-EU, OnCell G3470A-LTE-EU-T, TAP-323-EU-CT-T, TAP-323-US-CT-T, TAP-323-JP-CT-T, WDR-3124A-EU, WDR-3124A-EU-T, WDR-3124A-US and WDR-3124A-US-T (Automation Software) and classified as problematic. This issue affects an unknown code block of the component Config Import Menu. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Moxa WAC-2004 Config Import Menu cross site scripting [CVE-2021-39278]
- Virtual Patching
- September 7, 2021
- 3:05 pm
Contact us to get started
CVE-2023-27982 : SCHNEIDER ELECTRIC IGSS DATA SERVER/IGSS DASHBOARD/CUSTOM REPORTS UP TO 16.0.0.23040 DASHBOARD FILE DATA AUTHENTICITY
Description A CWE-345: Insufficient Verification of Data Authenticity vulnerability exists in the Data Server that could cause manipulation of dashboard
CVE-2023-1501 : ROCKOA 2.3.2 ACLOUDCOSACTION.PHP.SQL RUNACTION FILEID UNRESTRICTED UPLOAD
Description A vulnerability, which was classified as critical, was found in RockOA 2.3.2. This affects the function runAction of the
CVE-2023-28116 : CONTIKI-NG UP TO 4.8/4.9 BLE L2CAP MODULE PACKETBUF_SIZE BUFFER OVERFLOW
Description Contiki-NG is an open-source, cross-platform operating system for internet of things (IoT) devices. In versions 4.8 and prior, an