CVE-2018-5455
N/A
N/A
Summary
A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only digits, allowing an attacker to perform a brute force attack bypassing authentication and gaining access to device functions.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Moxa OnCell G3100-HSPA Series | Moxa OnCell G3100-HSPA Series | affected |
Weaknesses
- CWE-565: CWE-565
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.