Skip to main content

Oncell G3470A Lte Eu T Firmware

6 CVEs product

Monthly

CVE-2024-4641 CRITICAL Act Now

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to accepting a format string from an external source as an argument. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Oncell G3470A Lte Us T Firmware Oncell G3470A Lte Eu Firmware Oncell G3470A Lte Eu T Firmware Oncell G3470A Lte Us Firmware
NVD
CVSS 3.1
9.8
EPSS
0.3%
CVE-2024-4640 HIGH This Week

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to missing bounds checking on buffer operations. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Oncell G3470A Lte Us T Firmware Oncell G3470A Lte Eu Firmware Oncell G3470A Lte Eu T Firmware Oncell G3470A Lte Us Firmware
NVD
CVSS 3.1
8.2
EPSS
0.4%
CVE-2024-4639 HIGH This Week

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in IPSec configuration. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Oncell G3470A Lte Us T Firmware Oncell G3470A Lte Eu Firmware Oncell G3470A Lte Eu T Firmware Oncell G3470A Lte Us Firmware
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2024-4638 HIGH This Week

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in the web key upload function. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Oncell G3470A Lte Eu T Firmware Oncell G3470A Lte Eu Firmware Oncell G3470A Lte Us Firmware Oncell G3470A Lte Us T Firmware
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2021-39279 HIGH POC This Week

Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wac 2004 Firmware Wac 1001 Firmware Wac 1001 T Firmware Oncell G3470A Lte Eu Firmware +8
NVD
CVSS 3.1
8.8
EPSS
4.6%
CVE-2021-39278 MEDIUM POC This Month

Certain MOXA devices allow reflected XSS via the Config Import menu. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Wac 2004 Firmware Wac 1001 Firmware Wac 1001 T Firmware Oncell G3470A Lte Eu Firmware +8
NVD
CVSS 3.1
6.1
EPSS
0.9%
EPSS 0% CVSS 9.8
CRITICAL Act Now

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to accepting a format string from an external source as an argument. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Oncell G3470A Lte Us T Firmware Oncell G3470A Lte Eu Firmware +2
NVD
EPSS 0% CVSS 8.2
HIGH This Week

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to missing bounds checking on buffer operations. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Oncell G3470A Lte Us T Firmware Oncell G3470A Lte Eu Firmware +2
NVD
EPSS 0% CVSS 8.8
HIGH This Week

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in IPSec configuration. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Oncell G3470A Lte Us T Firmware Oncell G3470A Lte Eu Firmware +2
NVD
EPSS 0% CVSS 8.8
HIGH This Week

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in the web key upload function. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Oncell G3470A Lte Eu T Firmware Oncell G3470A Lte Eu Firmware +2
NVD
EPSS 5% CVSS 8.8
HIGH POC This Week

Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Wac 2004 Firmware Wac 1001 Firmware +10
NVD
EPSS 1% CVSS 6.1
MEDIUM POC This Month

Certain MOXA devices allow reflected XSS via the Config Import menu. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Wac 2004 Firmware Wac 1001 Firmware +10
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy