TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. This vulnerability derives from insufficient input validation in the key-delete function, which could potentially allow malicious users to delete arbitrary files.
References
Link | Resource |
---|---|
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230402-tn-5900-and-tn-4900-series-web-server-multiple-vulnerabilities | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Moxa
Published: 2023-08-17T06:41:41.568Z
Updated: 2023-10-20T07:07:09.507Z
Reserved: 2023-05-31T08:58:06.149Z
Link: CVE-2023-34216
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-08-17T07:15:43.297
Modified: 2023-08-23T15:08:57.020
Link: CVE-2023-34216
JSON object: View
Redhat Information
No data.
CWE