|
265431
|
5.3 |
MEDIUM
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable information disclosure vulnerability exists in the Web Application functionality of the Moxa AWK-3131A wireless access point running firmware 1.1. Retrieving a specific URL without aut…
|
CWE-200
Information Exposure
|
CVE-2016-8725
|
2024-11-21 11:59 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265432
|
5.3 |
MEDIUM
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable information disclosure vulnerability exists in the serviceAgent functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted TCP query will allow an …
|
CWE-200
Information Exposure
|
CVE-2016-8724
|
2024-11-21 11:59 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265433
|
7.5 |
HIGH
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable null pointer dereference exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. Any HTTP GET request not preceded by an '/' will caus…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-8723
|
2024-11-21 11:59 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265434
|
5.3 |
MEDIUM
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable Information Disclosure vulnerability exists in the Web Application functionality of Moxa AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client. Retrieving a specific…
|
CWE-200
Information Exposure
|
CVE-2016-8722
|
2024-11-21 11:59 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265435
|
4.3 |
MEDIUM
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable HTTP Header Injection vulnerability exists in the Web Application functionality of the Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted HTTP request can i…
|
CWE-74
Injection
|
CVE-2016-8720
|
2024-11-21 11:59 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265436
|
8.1 |
HIGH
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1. The device uses one nonce for all session authentication reque…
|
CWE-613
Insufficient Session Expiration
|
CVE-2016-8712
|
2024-11-21 11:59 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265437
|
6.1 |
MEDIUM
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable reflected Cross-Site Scripting vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. Specially crafted input, in multi…
|
CWE-79
Cross-site Scripting
|
CVE-2016-8719
|
2024-11-21 11:59 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265438
|
8.8 |
HIGH
Network
|
moxa
|
awk-3131a_firmware
|
An exploitable Cross-Site Request Forgery vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted form can trick a …
|
CWE-352
Origin Validation Error
|
CVE-2016-8718
|
2024-11-21 11:59 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265439
|
7.5 |
HIGH
Adjacent
|
moxa
|
awk-3131a_firmware
|
An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. The Change Password functiona…
|
CWE-640
Weak Password Recovery Mechanism for Forgotten Password
|
CVE-2016-8716
|
2024-11-21 11:59 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265440
|
8.1 |
HIGH
Network
|
lenovo
|
updates
|
Remote code execution in Lenovo Updates (not Lenovo System Update) allows man-in-the-middle attackers to execute arbitrary code.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-8237
|
2024-11-21 11:59 |
2017-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
