CVE-2021-33824
First published: Fri Jun 18 2021(Updated: )
An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa Mgate Mb3180 Firmware | =2.1-build_18113012 | |
| MOXA Mgate MB3180 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is CVE-2021-33824.
What is the title of the vulnerability?
The title of the vulnerability is 'An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attackers can use slowhttpt…'.
How does this vulnerability affect the MOXA Mgate MB3180 firmware?
This vulnerability affects MOXA Mgate MB3180 firmware version 2.1 Build 18113012.
What is the severity of CVE-2021-33824?
The severity of CVE-2021-33824 is high with a CVSS score of 7.5.
How can attackers exploit this vulnerability?
Attackers can exploit this vulnerability by using the slowhttptest tool to send incomplete HTTP requests, causing a denial-of-service condition on the web server.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/moxa
- canonical/moxa mgate mb3180 firmware
- version/moxa mgate mb3180 firmware/2.1-build_18113012
- canonical/moxa mgate mb3180