Security Advisory

CVE-2016-8720

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-04-13 19:00:00

Last updated 2024-08-06 02:27:41

Assigner talos

State PUBLISHED

Description

An exploitable HTTP Header Injection vulnerability exists in the Web Application functionality of the Moxa AWK-3131A Wireless Access Point running firmware 1.1. A specially crafted HTTP request can inject a payload in the bkpath parameter which will be copied in to Location header of the HTTP response.

← Browse all CVEs View on cve.org ↗