Jian Xian Li - Security Researcher - Exploit Intelligence Platform

CVE-2021-33824 GITHUB HIGH WRITEUP

Moxa Mgate Mb3180 Firmware - Denial of Service

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

10 stars

CVSS 7.5

View Code

CVE-2021-33818 GITHUB HIGH WRITEUP

UI Camera G3 Flex Firmware - Denial of Service

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

10 stars

CVSS 7.5

View Code

CVE-2021-33820 GITHUB HIGH WRITEUP

UniFi Protect G3 FLEX Camera <UVC.v4.30.0.67 - DoS

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.

10 stars

CVSS 7.5

View Code

CVE-2021-33822 GITHUB HIGH WRITEUP

Sing4g 4gee Router Hh70vb Firmware - Denial of Service

An issue was discovered on 4GEE ROUTER HH70VB Version HH70_E1_02.00_22. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

10 stars

CVSS 7.5

View Code

CVE-2021-33823 GITHUB HIGH WRITEUP

MOXA Mgate MB3180 <2.1 - DoS

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.

10 stars

CVSS 7.5

View Code

CVE-2021-33818 WRITEUP HIGH WRITEUP

UI Camera G3 Flex Firmware - Denial of Service

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

CVSS 7.5

View Code

CVE-2021-33820 WRITEUP HIGH WRITEUP

UniFi Protect G3 FLEX Camera <UVC.v4.30.0.67 - DoS

An issue was discovered in UniFi Protect G3 FLEX Camera Version UVC.v4.30.0.67.Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.

CVSS 7.5

View Code

CVE-2021-33822 WRITEUP HIGH WRITEUP

Sing4g 4gee Router Hh70vb Firmware - Denial of Service

An issue was discovered on 4GEE ROUTER HH70VB Version HH70_E1_02.00_22. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

CVSS 7.5

View Code

CVE-2021-33823 WRITEUP HIGH WRITEUP

MOXA Mgate MB3180 <2.1 - DoS

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.

CVSS 7.5

View Code

CVE-2021-33824 WRITEUP HIGH WRITEUP

Moxa Mgate Mb3180 Firmware - Denial of Service

An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attackers can use slowhttptest tool to send incomplete HTTP request, which could make server keep waiting for the packet to finish the connection, until its resource exhausted. Then the web server is denial-of-service.

CVSS 7.5

View Code