CVE-2018-5453

An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker may be able to edit the element of an HTTP request, causing the device to become unavailable.
References
Link Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-060-02 Patch Third Party Advisory US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-18-060-02 Patch Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:moxa:oncell_g3110-hspa_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:moxa:oncell_g3110-hspa:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:moxa:oncell_g3110-hspa-t_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:moxa:oncell_g3110-hspa-t:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:moxa:oncell_g3150-hspa_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:moxa:oncell_g3150-hspa:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:moxa:oncell_g3150-hspa-t_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:moxa:oncell_g3150-hspa-t:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:08

Type Values Removed Values Added
References () https://ics-cert.us-cert.gov/advisories/ICSA-18-060-02 - Patch, Third Party Advisory, US Government Resource () https://ics-cert.us-cert.gov/advisories/ICSA-18-060-02 - Patch, Third Party Advisory, US Government Resource

Information

Published : 2018-03-05 17:29

Updated : 2024-11-21 04:08


NVD link : CVE-2018-5453

Mitre link : CVE-2018-5453

CVE.ORG link : CVE-2018-5453


JSON object : View

Products Affected

moxa

  • oncell_g3150-hspa
  • oncell_g3110-hspa-t
  • oncell_g3150-hspa_firmware
  • oncell_g3150-hspa-t_firmware
  • oncell_g3150-hspa-t
  • oncell_g3110-hspa
  • oncell_g3110-hspa_firmware
  • oncell_g3110-hspa-t_firmware
CWE
CWE-130

Improper Handling of Length Parameter Inconsistency

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer