CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-34215

TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation and improper authentication in the certification-generation function, which could potentially allow malicious users to execute remote code on affected devices.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.0%

CVSS Severity

CVSS v3 Score 7.2

References

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230402-tn-5900-and-tn-4900-series-web-server-multiple-vulnerabilities
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230402-tn-5900-and-tn-4900-series-web-server-multiple-vulnerabilities

Products affected by CVE-2023-34215

Moxa » Tn-5900 » Version: N/A

cpe:2.3:h:moxa:tn-5900:-
Moxa » Tn-5900 Firmware » Version: N/A

cpe:2.3:o:moxa:tn-5900_firmware:-
Moxa » Tn-5900 Firmware » Version: 3.1

cpe:2.3:o:moxa:tn-5900_firmware:3.1
Moxa » Tn-5900 Firmware » Version: 3.2

cpe:2.3:o:moxa:tn-5900_firmware:3.2
Moxa » Tn-5900 Firmware » Version: 3.3

cpe:2.3:o:moxa:tn-5900_firmware:3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34215

Products

Pricing

Contact Us