CVE-2018-16282

Published: Sep 20, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

A command injection vulnerability in the web server functionality of Moxa EDR-810 V4.2 build 18041013 allows remote attackers to execute arbitrary OS commands with root privilege via the caname parameter to the /xml/net_WebCADELETEGetValue URI.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gist.github.com/tim124058/5c4babe391a016c771d2cccabead21cb

x_refsource_MISC

https://www.moxa.com/support/download.aspx?type=support&id=15851

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-16282

Description

Affected Products

References