CVE-2019-5141

Name of the Vulnerable Software and Affected Versions Moxa AWK-3131A firmware version 1.13

Description A command injection vulnerability exists in the iw webs functionality, allowing an attacker to gain remote control over the device. This can be achieved by sending specially crafted commands, utilizing the iw serverip parameter, which can cause user input to be reflected in a subsequent iw system call. An attacker can exploit this vulnerability while authenticated as a low-privilege user.

Recommendations For Moxa AWK-3131A firmware version 1.13, consider disabling the iw webs functionality until a patch is available to prevent exploitation of the command injection vulnerability. Restrict access to the iw serverip parameter to minimize the risk of remote control over the device. Avoid using the iw serverip parameter in the affected API endpoint until the issue is resolved.