CVE-2019-5139
6.2
CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Summary
An exploitable use of hard-coded credentials vulnerability exists in multiple iw_* utilities of the Moxa AWK-3131A firmware version 1.13. The device operating system contains an undocumented encryption password, allowing for the creation of custom diagnostic scripts.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Moxa | Moxa AWK-3131A Firmware version 1.13 | affected |
Weaknesses
- CWE-798: CWE-798: Use of Hard-coded Credentials
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.