#VU10813 Brute-force attack in OnCell G3100-HSPA Series
Vulnerability identifier: #VU10813
Vulnerability risk: Low
CVSSv3.1: 6.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-565
Exploitation vector: Network
Exploit availability: No
Vulnerable software:
OnCell G3100-HSPA Series
Hardware solutions /
Firmware
Vendor: Moxa
Description
The vulnerability allows remote attacker to perform brute-force attack on the target system.
The vulnerability exists due to the application allows a cookie parameter to consist of only digits. A remote attacker can perform a brute force attack, bypass authentication and gain access to device functions.
Successful exploitation of this vulnerability may result in unauthorized access to the system.
Mitigation
Install update from vendor's website.
Vulnerable software versions
OnCell G3100-HSPA Series: All versions
External links
http://ics-cert.us-cert.gov/advisories/ICSA-18-060-02
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
