CVE-2023-33238
CVSS V2 None
CVSS V3 None
Description
TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command injection vulnerability. This vulnerability stems from inadequate input validation in the certificate management function, which could potentially allow malicious users to execute remote code on affected devices.
Overview
- CVE ID
- CVE-2023-33238
- Assigner
- Moxa
- Vulnerability Status
- PUBLISHED
- Published Version
- 2023-08-17T02:04:50.789Z
- Last Modified Date
- 2023-10-20T06:53:01.602Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230402-tn-5900-and-tn-4900-series-web-server-multiple-vulnerabilities | vendor-advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-33238 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-33238 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 07:58:13 | Added to TrackCVE |