Back to search
CVE-2018-5455
Published: Mar 5, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only digits, allowing an attacker to perform a brute force attack bypassing authentication and gaining access to device functions.
| Vendor | Product | Versions |
|---|---|---|
n/a | Moxa OnCell G3100-HSPA Series | affected Moxa OnCell G3100-HSPA Series |
Weaknesses (CWE)
References
https://ics-cert.us-cert.gov/advisories/ICSA-18-060-02
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now