6.5
CVE-2016-8362
- EPSS 0.16%
- Veröffentlicht 13.02.2017 21:59:01
- Zuletzt bearbeitet 20.04.2025 01:37:25
- Quelle ics-cert@hq.dhs.gov
- CVE-Watchlists
- Unerledigt
LoginAn issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-RTG Series, AWK-3131-M12-RCC Series, AWK-5232-M12-RCC Series, TAP-6226 Series, AWK-3121/4121 Series, AWK-3131/4131 Series, and AWK-5222/6222 Series. Any user is able to download log files by accessing a specific URL.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Moxa ≫ Oncellg3470a-lte Firmware Version <= 10-31-2016
Moxa ≫ Awk-4131a Firmware Version <= 10-31-2016
Moxa ≫ Awk-3191 Firmware Version <= 05-30-2017
Moxa ≫ Awk-5232 Firmware Version <= 05-30-2017
Moxa ≫ Awk-6232 Firmware Version <= 05-30-2017
Moxa ≫ Awk-1121 Firmware Version <= 06-29-2017
Moxa ≫ Awk-1127 Firmware Version <= 06-29-2017
Moxa ≫ Wac-1001 V2 Firmware Version <= 06-29-2017
Moxa ≫ Wac-2004 Firmware Version <= 06-29-2017
Moxa ≫ Awk-3121-m12-rtg Firmware Version <= 06-29-2017
Moxa ≫ Awk-3131-m12-rcc Firmware Version <= 06-29-2017
Moxa ≫ Awk-5232-m12-rcc Firmware Version <= 06-29-2017
Moxa ≫ Awk-3131a Firmware Version <= 10-31-2016
Moxa ≫ Awk-1131a Firmware Version <= 10-31-2016
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.335 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 2.8 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
|
| nvd@nist.gov | 4 | 8 | 2.9 |
AV:N/AC:L/Au:S/C:P/I:N/A:N
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.