7.4

CVE-2022-27048

EPSS 0.31%
Veröffentlicht 15.04.2022 19:15:15
Zuletzt bearbeitet 21.11.2024 06:55:02
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle (MITM) attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 or lower. and MGate MB3480 Series Firmware Version 3.2 or lower.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Moxa ≫ Mgate Mb3170i Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170i Version-

Moxa ≫ Mgate Mb3170i-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170i-t Version-

Moxa ≫ Mgate Mb3170-m-st Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-m-st Version-

Moxa ≫ Mgate Mb3170-m-sc-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-m-sc-t Version-

Moxa ≫ Mgate Mb3170 Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170 Version-

Moxa ≫ Mgate Mb3170-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-t Version-

Moxa ≫ Mgate Mb3170-m-sc Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-m-sc Version-

Moxa ≫ Mgate Mb3170i-s-sc Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170i-s-sc Version-

Moxa ≫ Mgate Mb3270i Firmware Version <= 4.2

Moxa ≫ Mgate Mb3270i Version-

Moxa ≫ Mgate Mb3270i-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3270i-t Version-

Moxa ≫ Mgate Mb3170i-m-sc Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170i-m-sc Version-

Moxa ≫ Mgate Mb3170-s-sc-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-s-sc-t Version-

Moxa ≫ Mgate Mb3170i-m-sc-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170i-m-sc-t Version-

Moxa ≫ Mgate Mb3270 Firmware Version <= 4.2

Moxa ≫ Mgate Mb3270 Version-

Moxa ≫ Mgate Mb3270-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3270-t Version-

Moxa ≫ Mgate Mb3170-s-sc Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-s-sc Version-

Moxa ≫ Mgate Mb3170-m-st-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170-m-st-t Version-

Moxa ≫ Mgate Mb3170i-s-sc-t Firmware Version <= 4.2

Moxa ≫ Mgate Mb3170i-s-sc-t Version-

Moxa ≫ Mgate Mb3280 Firmware Version <= 4.1

Moxa ≫ Mgate Mb3280 Version-

Moxa ≫ Mgate Mb3480 Firmware Version <= 3.2

Moxa ≫ Mgate Mb3480 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.31%	0.54

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.4	2.2	5.2	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:P/I:P/A:N

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://www.moxa.com/en/support/product-support/security-advisory/mgate-mb3170-mb3270-mb3280-mb3480-protocol-gateways-vulnerability

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-27048

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-27048

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-27048

EUVD