Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only digits, allowing an attacker to perform a brute force attack bypassing authentication and gaining access to device functions.
CVSS Information
N/A
Vulnerability Type
在信任Cookie未进行验证与完整性检查
Vulnerability Title
Moxa OnCell G3100-HSPA Series 安全漏洞
Vulnerability Description
Moxa OnCell G3100-HSPA Series是摩莎(Moxa)公司的G3100系列网关产品。 Moxa OnCell G3100-HSPA Series 1.4 Build 16062919及之前版本中存在安全漏洞,该漏洞源于程序允许‘cookie’参数可以只包含数字。攻击者可利用该漏洞实施暴力破解攻击,绕过身份验证,获取设备功能的访问权限。
CVSS Information
N/A
Vulnerability Type
N/A