CVE-2018-11421

Name of the Vulnerable Software and Affected Versions Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior

Description The issue is related to insufficient protection of service data in the web interface of the Moxa OnCell G3100-HSPA Series. This can allow a remote attacker to gain unauthorized access to protected information. The proprietary monitoring protocol used by the device does not provide confidentiality, integrity, and authenticity security controls, sending all information in plain text, which can be intercepted and modified. This makes the protocol vulnerable to remote unauthenticated disclosure of sensitive information, including the administrator's password. Additionally, under certain conditions, it is possible to retrieve other information, such as the content of HTTP requests to the device or previously used passwords, due to memory leakages.

Recommendations For Moxa OnCell G3100-HSPA Series version 1.6 Build 17100315 and prior, consider disabling the proprietary monitoring protocol until a patch is available to prevent remote unauthenticated disclosure of sensitive information. Restrict access to the device's web interface to minimize the risk of exploitation. Avoid using the device's monitoring protocol for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.