// For flags

CVE-2016-8363

 

Severity Score

10.0
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series, AWK-3131/4131 Series, and AWK-5222/6222 Series. User is able to execute arbitrary OS commands on the server.

Ha sido descubierto un problema en Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series, AWK-3131/4131 Series y AWK-5222/6222 Series. El usuario puede ejecutar comandos arbitrarios de SO en el servidor.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2016-09-28 CVE Reserved
  • 2017-02-13 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (2)
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Moxa
Search vendor "Moxa"
Oncellg3470a-lte Firmware
Search vendor "Moxa" for product "Oncellg3470a-lte Firmware"
<= 10-31-2016
Search vendor "Moxa" for product "Oncellg3470a-lte Firmware" and version " <= 10-31-2016"
-
Affected
in Moxa
Search vendor "Moxa"
Oncellg3470a-lte
Search vendor "Moxa" for product "Oncellg3470a-lte"
--
Safe
Moxa
Search vendor "Moxa"
Awk-4131a Firmware
Search vendor "Moxa" for product "Awk-4131a Firmware"
<= 10-31-2016
Search vendor "Moxa" for product "Awk-4131a Firmware" and version " <= 10-31-2016"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-4131a
Search vendor "Moxa" for product "Awk-4131a"
--
Safe
Moxa
Search vendor "Moxa"
Awk-3191 Firmware
Search vendor "Moxa" for product "Awk-3191 Firmware"
<= 05-30-2017
Search vendor "Moxa" for product "Awk-3191 Firmware" and version " <= 05-30-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-3191
Search vendor "Moxa" for product "Awk-3191"
--
Safe
Moxa
Search vendor "Moxa"
Awk-5232 Firmware
Search vendor "Moxa" for product "Awk-5232 Firmware"
<= 05-30-2017
Search vendor "Moxa" for product "Awk-5232 Firmware" and version " <= 05-30-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-5232
Search vendor "Moxa" for product "Awk-5232"
--
Safe
Moxa
Search vendor "Moxa"
Awk-6232 Firmware
Search vendor "Moxa" for product "Awk-6232 Firmware"
<= 05-30-2017
Search vendor "Moxa" for product "Awk-6232 Firmware" and version " <= 05-30-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-6232
Search vendor "Moxa" for product "Awk-6232"
--
Safe
Moxa
Search vendor "Moxa"
Awk-1121 Firmware
Search vendor "Moxa" for product "Awk-1121 Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Awk-1121 Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-1121
Search vendor "Moxa" for product "Awk-1121"
--
Safe
Moxa
Search vendor "Moxa"
Awk-1127 Firmware
Search vendor "Moxa" for product "Awk-1127 Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Awk-1127 Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-1127
Search vendor "Moxa" for product "Awk-1127"
--
Safe
Moxa
Search vendor "Moxa"
Wac-1001 V2 Firmware
Search vendor "Moxa" for product "Wac-1001 V2 Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Wac-1001 V2 Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Wac-1001 V2
Search vendor "Moxa" for product "Wac-1001 V2"
--
Safe
Moxa
Search vendor "Moxa"
Wac-2004 Firmware
Search vendor "Moxa" for product "Wac-2004 Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Wac-2004 Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Wac-2004
Search vendor "Moxa" for product "Wac-2004"
--
Safe
Moxa
Search vendor "Moxa"
Awk-3121-m12-rtg Firmware
Search vendor "Moxa" for product "Awk-3121-m12-rtg Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Awk-3121-m12-rtg Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-3121-m12-rtg
Search vendor "Moxa" for product "Awk-3121-m12-rtg"
--
Safe
Moxa
Search vendor "Moxa"
Awk-3131-m12-rcc Firmware
Search vendor "Moxa" for product "Awk-3131-m12-rcc Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Awk-3131-m12-rcc Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-3131-m12-rcc
Search vendor "Moxa" for product "Awk-3131-m12-rcc"
--
Safe
Moxa
Search vendor "Moxa"
Awk-5232-m12-rcc Firmware
Search vendor "Moxa" for product "Awk-5232-m12-rcc Firmware"
<= 06-29-2017
Search vendor "Moxa" for product "Awk-5232-m12-rcc Firmware" and version " <= 06-29-2017"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-5232-m12-rcc
Search vendor "Moxa" for product "Awk-5232-m12-rcc"
--
Safe
Moxa
Search vendor "Moxa"
Awk-3131a Firmware
Search vendor "Moxa" for product "Awk-3131a Firmware"
<= 10-31-2016
Search vendor "Moxa" for product "Awk-3131a Firmware" and version " <= 10-31-2016"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-3131a
Search vendor "Moxa" for product "Awk-3131a"
--
Safe
Moxa
Search vendor "Moxa"
Awk-1131a Firmware
Search vendor "Moxa" for product "Awk-1131a Firmware"
<= 10-31-2016
Search vendor "Moxa" for product "Awk-1131a Firmware" and version " <= 10-31-2016"
-
Affected
in Moxa
Search vendor "Moxa"
Awk-1131a
Search vendor "Moxa" for product "Awk-1131a"
--
Safe