CVE-2016-8712 in AWK-3131Ainfo

Summary

An exploitable nonce reuse vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless AP running firmware 1.1. The device uses one nonce for all session authentication requests and only changes the nonce if the web application has been idle for 300 seconds.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsible

Talos

Reservation

10/17/2016

Disclosure

04/13/2017

Moderation

VulDB entry created

Entries

1: VDB-99831

CPE

ready

CWE

CWE-613 (Confirmed)

CVSS

7.1

EPSS

0.00380

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-8712
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-8712
CVE Details	https://www.cvedetails.com/cve/CVE-2016-8712/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!