CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34217

TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability stems from insufficient input validation in the certificate-delete function, which could potentially allow malicious users to delete arbitrary files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.9%

CVSS Severity

CVSS v3 Score 8.1

References

Products affected by CVE-2023-34217

Moxa » Tn-4900 » Version: N/A

cpe:2.3:h:moxa:tn-4900:-
Moxa » Tn-5900 » Version: N/A

cpe:2.3:h:moxa:tn-5900:-
Moxa » Tn-4900 Firmware » Version: Any

cpe:2.3:o:moxa:tn-4900_firmware:*
Moxa » Tn-5900 Firmware » Version: N/A

cpe:2.3:o:moxa:tn-5900_firmware:-
Moxa » Tn-5900 Firmware » Version: 3.1

cpe:2.3:o:moxa:tn-5900_firmware:3.1
Moxa » Tn-5900 Firmware » Version: 3.2

cpe:2.3:o:moxa:tn-5900_firmware:3.2
Moxa » Tn-5900 Firmware » Version: 3.3

cpe:2.3:o:moxa:tn-5900_firmware:3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-34217

Products

Pricing

Contact Us