Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Wac\-1001_firmware
(Moxa)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 2 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-09-07 | CVE-2021-39278 | Certain MOXA devices allow reflected XSS via the Config Import menu. This affects WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323-US-CT-T 1.3, TAP-323-JP-CT-T 1.3, WDR-3124A-EU 2.3, WDR-3124A-EU-T 2.3, WDR-3124A-US 2.3, and WDR-3124A-US-T 2.3. | Oncell_g3470a\-Lte\-Eu\-T_firmware, Oncell_g3470a\-Lte\-Eu_firmware, Tap\-323\-Eu\-Ct\-T_firmware, Tap\-323\-Jp\-Ct\-T_firmware, Tap\-323\-Us\-Ct\-T_firmware, Wac\-1001\-T_firmware, Wac\-1001_firmware, Wac\-2004_firmware, Wdr\-3124a\-Eu\-T_firmware, Wdr\-3124a\-Eu_firmware, Wdr\-3124a\-Us\-T_firmware, Wdr\-3124a\-Us_firmware | 6.1 | ||
| 2021-09-07 | CVE-2021-39279 | Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. This affects WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323-US-CT-T 1.3, TAP-323-JP-CT-T 1.3, WDR-3124A-EU 2.3, WDR-3124A-EU-T 2.3, WDR-3124A-US 2.3, and WDR-3124A-US-T 2.3. | Oncell_g3470a\-Lte\-Eu\-T_firmware, Oncell_g3470a\-Lte\-Eu_firmware, Tap\-323\-Eu\-Ct\-T_firmware, Tap\-323\-Jp\-Ct\-T_firmware, Tap\-323\-Us\-Ct\-T_firmware, Wac\-1001\-T_firmware, Wac\-1001_firmware, Wac\-2004_firmware, Wdr\-3124a\-Eu\-T_firmware, Wdr\-3124a\-Eu_firmware, Wdr\-3124a\-Us\-T_firmware, Wdr\-3124a\-Us_firmware | 8.8 |