Eugenie Potseluevskaya

**Name of the Vulnerable Software and Affected Versions** Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior **Description** The issue is related to insufficient protection of service data in the web interface of the Moxa OnCell G3100-HSPA Series. This can allow a remote attacker to gain unauthorized access to protected information. The proprietary monitoring protocol used by the device does not provide confidentiality, integrity, and authenticity security controls, sending all information in plain text, which can be intercepted and modified. This makes the protocol vulnerable to remote unauthenticated disclosure of sensitive information, including the administrator's password. Additionally, under certain conditions, it is possible to retrieve other information, such as the content of HTTP requests to the device or previously used passwords, due to memory leakages. **Recommendations** For Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior, consider disabling the proprietary monitoring protocol until a patch is available to prevent remote unauthenticated disclosure of sensitive information. Restrict access to the device's web interface to minimize the risk of exploitation. Avoid using the device's monitoring protocol for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior **Description** The issue is related to improper access control in the web interface of the Moxa OnCell G3100-HSPA Series, which can be exploited by a remote attacker to execute arbitrary code. The device uses a proprietary configuration protocol that lacks confidentiality, integrity, and authenticity security controls, sending all information in plain text. This allows the information to be intercepted and modified. Any commands, including device reboot, configuration download or upload, or firmware upgrade, are accepted and executed by the device without authentication. **Recommendations** For Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior, consider restricting access to the device's configuration protocol to minimize the risk of exploitation until a patch is available. As a temporary workaround, limit the use of the device's web interface and avoid sending sensitive information over the proprietary configuration protocol. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior **Description** The issue is related to a weak `Cookie` parameter used in the web application, which can be brute-forced by an attacker to bypass authentication. This allows access to the web interface, enabling the use of all its functions except for password change. The vulnerability is associated with deficiencies in the authentication procedure, potentially allowing a remote attacker to gain access to the device with root privileges. **Recommendations** For Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, consider temporarily restricting access to the web interface until a patch is available. As a mitigation measure, avoid using the weak `Cookie` parameter in the web application.

**Name of the Vulnerable Software and Affected Versions** Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior **Description** The issue is related to the absence of CSRF tokens in the web application, which allows for CSRF attacks on the device administrator. This can be exploited by a remote attacker to perform intersite request forgery. The estimated number of potentially affected devices worldwide is not specified. **Recommendations** For Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior, consider implementing CSRF token validation to prevent CSRF attacks. As a temporary workaround, restrict access to the web application to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moxa OnCell G3100-HSPA Series versions 1.4 Build 16062919 and prior **Description** A NULL Pointer Dereference issue was discovered, allowing an attacker to perform a denial of service attack by exploiting the application's failure to check for a NULL value. **Recommendations** For Moxa OnCell G3100-HSPA Series versions 1.4 Build 16062919 and prior, consider applying a patch or update that addresses the NULL Pointer Dereference issue to prevent denial of service attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Moxa OnCell G3100-HSPA Series versions 1.4 Build 16062919 and prior **Description** A Reliance on Cookies without Validation and Integrity Checking issue allows an attacker to bypass authentication by performing a brute force attack on a cookie parameter that can consist of only digits, gaining access to device functions. **Recommendations** For Moxa OnCell G3100-HSPA Series versions 1.4 Build 16062919 and prior, consider restricting access to the device until a fix is available, and avoid using the cookie parameter for authentication purposes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.