CVE-2024-4638 in OnCell G3470A-LTEinfo

Summary

OnCell G3470A-LTE Series firmware versions v1.7.7 and prior have been identified as vulnerable due to a lack of neutralized inputs in the web key upload function. An attacker could modify the intended commands sent to target functions, which could cause malicious users to execute unauthorized commands.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

05/08/2024

Disclosure

06/25/2024

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
269610	Moxa OnCell G3470A-LTE Web Key Upload command injection	77	Not defined	Not defined	CVE-2024-4638

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!