Full title: Moxa TN-5900 Firmware Post Authentication Command Injection Exploit 
Category: web applications
Platform: hardware
Moxa TN-5900 versions 3.1 and below suffer from an issue where a user who has authenticated to the management web application is able to leverage a command injection vulnerability in the p12 processing code of the certificate management function web_CERMGMTUpload.

# 0day.today @ http://0day.today/