CVE-2019-5139

Summary

An exploitable use of hard-coded credentials vulnerability exists in multiple iw_* utilities of the Moxa AWK-3131A firmware version 1.13. The device operating system contains an undocumented encryption password, allowing for the creation of custom diagnostic scripts.

Affected Software

VendorProductVersion RangeStatus
n/aMoxaMoxa AWK-3131A Firmware version 1.13affected

Weaknesses

  • CWE-798: CWE-798: Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

References