HIGH🇵🇱 Wersja polska

CVE-2021-33824

CVSS 7.5v3.1pub. 2021-06-18upd. 2024-11-21

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Moxa Mgate Mb3180

    HW
    Moxa
    wszystkie wersje
  • Moxa Mgate Mb3180 Firmware

    OS
    Moxa
    2.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-4161CRITICAL9.8ten sam produkt

The affected products contain vulnerable firmware, which could allow an attacker to sniff the traffic and decr...

CVE-2016-5804CRITICAL9.8ten sam produkt

Moxa MGate MB3180 before 1.8, MGate MB3280 before 2.7, MGate MB3480 before 2.6, MGate MB3170 before 2.5, and M...

CVE-2021-33823HIGH7.5ten sam produkt

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attacker could send a huge amount of ...

CVE-2023-39979CRITICAL9.8ten sam vendor

There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication....

CVE-2023-33236CRITICAL9.8ten sam vendor

MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been report...