mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
1.0 KiB
1.0 KiB
CVE-2019-5142
&color=brighgreen)
Description
An exploitable command injection vulnerability exists in the hostname functionality of the Moxa AWK-3131A firmware version 1.13. A specially crafted entry to network configuration information can cause execution of arbitrary system commands, resulting in full control of the device. An attacker can send various authenticated requests to trigger this vulnerability.
POC
Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0931
- https://talosintelligence.com/vulnerability_reports/TALOS-2019-0931
Github
No PoCs found on GitHub currently.