Memory Corruption in Moxa OnCell G3470A-LTE Series Web Interface
CVE-2018-11424

7.5HIGH

Key Information:

Vendor: Moxa
Status: Oncell G3470a-lte-us Firmware
Vendor: CVE Published:; 3 July 2019

Summary

A memory corruption vulnerability exists in the web interface of Moxa OnCell G3470A-LTE Series, impacting version 1.6 Build 18021314 and earlier. This flaw could potentially allow unauthorized access or manipulation of data through improperly handled memory operations, thus posing security risks for users and their networks.

References

https://github.com/klsecservices/Advisories/blob/master/K...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 3, 2019
Vulnerability Reserved
May 24, 2018