Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Moxa Subscribe
Filtered by product Tn-5900

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-34215 1 Moxa 2 Tn-5900, Tn-5900 Firmware 2023-08-23 N/A 9.8 CRITICAL
TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the certification-generation function, which could potentially allow malicious users to execute remote code on affected devices. 
CVE-2023-33238 1 Moxa 4 Tn-4900, Tn-4900 Firmware, Tn-5900 and 1 more 2023-08-22 N/A 9.8 CRITICAL
TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from inadequate input validation in the certificate management function, which could potentially allow malicious users to execute remote code on affected devices.
CVE-2023-34214 1 Moxa 4 Tn-4900, Tn-4900 Firmware, Tn-5900 and 1 more 2023-08-22 N/A 9.8 CRITICAL
TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation in the certificate-generation function, which could potentially allow malicious users to execute remote code on affected devices.
CVE-2023-33239 1 Moxa 4 Tn-4900, Tn-4900 Firmware, Tn-5900 and 1 more 2023-08-22 N/A 9.8 CRITICAL
TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from insufficient input validation in the key-generation function, which could potentially allow malicious users to execute remote code on affected devices.
CVE-2023-34213 1 Moxa 2 Tn-5900, Tn-5900 Firmware 2023-08-22 N/A 9.8 CRITICAL
TN-5900 Series firmware versions v3.3 and prior are vulnerable to command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the key-generation function, which could potentially allow malicious users to execute remote code on affected devices. 
CVE-2021-46560 1 Moxa 2 Tn-5900, Tn-5900 Firmware 2022-02-01 7.5 HIGH 9.8 CRITICAL
The firmware on Moxa TN-5900 devices through 3.1 allows command injection that could lead to device damage.