CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2021-46560 – Moxa TN-5900 Post Authentication Command Injection
https://notcve.org/view.php?id=CVE-2021-46560
The firmware on Moxa TN-5900 devices through 3.1 allows command injection that could lead to device damage. El firmware de los dispositivos Moxa TN-5900 versiones hasta 3.1, permite una inyección de comandos que podría conllevar a daños en el dispositivo Moxa TN-5900 versions 3.1 and below suffer from an issue where a user who has authenticated to the management web application is able to leverage a command injection vulnerability in the p12 processing code of the certificate management function web_CERMGMTUpload. • https://www.moxa.com/en/support/product-support/security-advisory/tn-5900-secure-routers-vulnerabilitiestxt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •