Edr-g903 firmware

This hub aggregates every CVE we track for Edr-g903 firmware, a product in the ics ot iot space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 9 most recently published vulnerabilities affecting Edr-g903 firmware.

• CVE-2023-4452Web Server Buffer Overflow Vulnerability6.5Nov 1, 2023
• CVE-2020-28144Certain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series F...9.8Feb 3, 2021
• CVE-2020-14511Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4).9.8Jul 15, 2020
• CVE-2016-0875Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to read configuration and log files via a crafted URL.7.5May 31, 2016
• CVE-2016-0877Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12 allows remote attackers to cause a denial of service (memory consumption) by executing the ping function.7.5May 31, 2016
• CVE-2016-0876Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to discover cleartext passwords by reading a configuration file.7.5May 31, 2016
• CVE-2016-0879Moxa Secure Router EDR-G903 devices before 3.4.12 do not delete copies of configuration and log files after completing the import function, which allows remote attackers to obtain sensitive informa...7.5May 31, 2016
• CVE-2016-0878Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to cause a denial of service (cold start) by sending two crafted ping requests.7.5May 31, 2016
• CVE-2012-4712Moxa EDR-G903 series routers with firmware before 2.11 have a hardcoded account, which allows remote attackers to obtain unspecified device access via unknown vectors.5.0Feb 15, 2013