CVE-2023-34214

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 17, 2023

Updated: Aug 22, 2023

CWE ID 77

Summary

CVE-2023-34214 is a command injection vulnerability affecting TN-4900 Series firmware versions prior to v1.2.5 and TN-5900 Series firmware versions prior to v3.4. The vulnerability is due to insufficient input validation in the certificate-generation function. Malicious users can exploit this weakness to execute remote code on affected devices. This issue poses a significant risk to network security and requires immediate attention from device administrators to apply available patches or updates.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MOXA Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzabez
https://www.cve.org/CVERecord?id=CVE-2023-34214
https://nvd.nist.gov/vuln/detail/CVE-2023-34214

Back to Vulnerability Database

CVE-2023-34214

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations