A vulnerability has been found in Moxa WAC-2004, WAC-1001, WAC-1001-T, OnCell G3470A-LTE-EU, OnCell G3470A-LTE-EU-T, TAP-323-EU-CT-T, TAP-323-US-CT-T, TAP-323-JP-CT-T, WDR-3124A-EU, WDR-3124A-EU-T, WDR-3124A-US and WDR-3124A-US-T (Automation Software) and classified as critical. This vulnerability affects an unknown code of the file /forms/web_importTFTP. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
Moxa WAC-2004 /forms/web_importTFTP command injection
- Virtual Patching
- September 7, 2021
- 3:05 pm
CVE-2022-23122 : NETATALK PRIOR 3.1.13 SETFILPARAMS STACK-BASED OVERFLOW
Description This vulnerability allows remote attackers to execute arbitrary code on affected installations of Netatalk. Authentication is not required to
CVE-2023-28102 : DISCORDRB ENCODER.RB FILE OS COMMAND INJECTION
Description discordrb is an implementation of the Discord API using Ruby. In discordrb before commit `91e13043ffa` the `encoder.rb` file unsafely
CVE-2022-4126 : ABB RCCMD PRIOR 4.40 230207 HARD-CODED PASSWORD
Description Use of Default Password vulnerability in ABB RCCMD on Windows, Linux, MacOS allows Try Common or Default Usernames and