Home
HIGH: 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NHIGH: 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HDefault status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Default status
unaffected
1.0 (custom)
affected
Description
Moxa’s cellular routers, secure routers, and network security appliances are affected by a high-severity vulnerability, CVE-2024-9138. This vulnerability involves hard-coded credentials, enabling an authenticated user to escalate privileges and gain root-level access to the system, posing a significant security risk.
Problem types
CWE-656: Reliance on Security Through Obscurity
Product status
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
1.0 (custom)
Credits
Lars Haulin
References
www.moxa.com/...-cellular-routers,-secure-routers,-and-netwo