Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Second Order Command-injection Vulnerability in the Key-generation Function
Vulnerability Description
TN-5900 Series firmware versions v3.3 and prior are vulnerable to command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the key-generation function, which could potentially allow malicious users to execute remote code on affected devices.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
MOXA TN-5900 命令注入漏洞
Vulnerability Description
MOXA TN-5900是中国摩莎(MOXA)公司的一系列工业防火墙路由器。 MOXA TN-5900 v3.3 版本之前存在安全漏洞,该漏洞源于密钥生成功能中输入验证不足和身份验证不当,这可能允许恶意用户在受影响的设备上执行远程代码。
CVSS Information
N/A
Vulnerability Type
N/A