← Back

Oncell G3110 Hspa Firmware

oncell_g3110-hspa_firmware

Vendor: Moxa • 6 CVEs

CVEs (6)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-5455
1Moxa
4Oncell G3110 Hspa T Firmware
Oncell G3110 Hspa FirmwareOncell G3150 Hspa T Firmware+1 more
Nov 21, 2024
Mar 5, 2018
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only dig...Show more
A Reliance on Cookies without Validation and Integrity Checking issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application allows a cookie parameter to consist of only digits, allowing an attacker to perform a brute force attack bypassing authentication and gaining access to device functions.Show less
CVE-2018-5453
1Moxa
4Oncell G3110 Hspa T Firmware
Oncell G3110 Hspa FirmwareOncell G3150 Hspa T Firmware+1 more
Nov 21, 2024
Mar 5, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker may be able to edit the element of an HTTP request, causing t...Show more
An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker may be able to edit the element of an HTTP request, causing the device to become unavailable.Show less
CVE-2018-5449
1Moxa
4Oncell G3110 Hspa T Firmware
Oncell G3110 Hspa FirmwareOncell G3150 Hspa T Firmware+1 more
Nov 21, 2024
Mar 5, 2018
N/A· v4
6.5 MEDIUM· v3
3.3 LOW· v2
A NULL Pointer Dereference issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application does not check for a NULL value, allowing for an attacker to perform a denial of serv...Show more
A NULL Pointer Dereference issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. The application does not check for a NULL value, allowing for an attacker to perform a denial of service attack.Show less
CVE-2017-7917
1Moxa
6Oncell 5004 Hspa Firmware
Oncell 5104 Hsdpa FirmwareOncell 5104 Hspa Firmware+3 more
May 13, 2026
May 29, 2017
N/A· v4
8.8 HIGH· v3
6.8 MEDIUM· v2
A Cross-Site Request Forgery issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA Versio...Show more
A Cross-Site Request Forgery issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA Version 1.4 Build 11051315 and previous versions, OnCell 5104-HSDPA, OnCell 5104-HSPA, and OnCell 5004-HSPA. The application does not sufficiently verify if a request was intentionally provided by the user who submitted the request, which could allow an attacker to modify the configuration of the device.Show less
CVE-2017-7915
1Moxa
6Oncell 5004 Hspa Firmware
Oncell 5104 Hsdpa FirmwareOncell 5104 Hspa Firmware+3 more
May 13, 2026
May 29, 2017
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
An Improper Restriction of Excessive Authentication Attempts issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous ver...Show more
An Improper Restriction of Excessive Authentication Attempts issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA Version 1.4 Build 11051315 and previous versions, OnCell 5104-HSDPA, OnCell 5104-HSPA, and OnCell 5004-HSPA. An attacker can freely use brute force to determine parameters needed to bypass authentication.Show less
CVE-2017-7913
1Moxa
6Oncell 5004 Hspa Firmware
Oncell 5104 Hsdpa FirmwareOncell 5104 Hspa Firmware+3 more
May 13, 2026
May 29, 2017
N/A· v4
9.8 CRITICAL· v3
5.0 MEDIUM· v2
A Plaintext Storage of a Password issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA V...Show more
A Plaintext Storage of a Password issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA Version 1.4 Build 11051315 and previous versions, OnCell 5104-HSDPA, OnCell 5104-HSPA, and OnCell 5004-HSPA. The application's configuration file contains parameters that represent passwords in plaintext.Show less