CRITICAL🇬🇧 English

CVE-2016-8721

CVSS 9.1v3.1pub. 2017-04-20upd. 2026-05-13

An exploitable OS Command Injection vulnerability exists in the web application 'ping' functionality of Moxa AWK-3131A Wireless Access Points running firmware 1.1. Specially crafted web form input can cause an OS Command Injection resulting in complete compromise of the vulnerable device. An attacker can exploit this vulnerability remotely.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Moxa Awk 3131a

    HW
    Moxa
    wszystkie wersje
  • Moxa Awk 3131a Firmware

    OS
    Moxa
    1.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Command Injection
CWE
Referencje

Powiązane podatności

CVE-2019-5138CRITICAL9.9ten sam produkt

An exploitable command injection vulnerability exists in encrypted diagnostic script functionality of the Moxa...

CVE-2017-14459CRITICAL10.0ten sam produkt

An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality o...

CVE-2016-8717CRITICAL9.8ten sam produkt

An exploitable Use of Hard-coded Credentials vulnerability exists in the Moxa AWK-3131A Wireless Access Point ...

CVE-2016-8363CRITICAL10.0ten sam produkt

An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-52...

CVE-2019-5136HIGH8.8ten sam produkt

An exploitable privilege escalation vulnerability exists in the iw_console functionality of the Moxa AWK-3131A...

CVE-2016-8721 — CRITICAL 9.1 | CVEbaza.pl