CVE-2016-8720
3.1
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N
Summary
An exploitable HTTP Header Injection vulnerability exists in the Web Application functionality of the Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted HTTP request can inject a payload in the bkpath parameter which will be copied in to Location header of the HTTP response.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Moxa | AWK-3131A Series Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client | 1.1 | affected |
Weaknesses
- HTTP Header Injection vulnerabilty
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.