Unrated severityNVD Advisory· Published Jul 3, 2019· Updated Aug 5, 2024
CVE-2018-11421
CVE-2018-11421
Description
Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior use a proprietary monitoring protocol that does not provide confidentiality, integrity, and authenticity security controls. All information is sent in plain text, and can be intercepted and modified. The protocol is vulnerable to remote unauthenticated disclosure of sensitive information, including the administrator's password. Under certain conditions, it's also possible to retrieve additional information, such as content of HTTP requests to the device, or the previously used password, due to memory leakages.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Moxa/OnCell G3100-HSPA Seriesdescription
- Range: <= 1.6 Build 17100315
Patches
Vulnerability mechanics
References
1- github.com/klsecservices/Advisories/blob/master/KL-MOXA-2018-103.mdmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.