CVE-2026-0714
- EPSS 0.01%
- Veröffentlicht 05.02.2026 17:16:13
- Zuletzt bearbeitet 18.02.2026 17:55:46
A physical attack vulnerability exists in certain Moxa industrial computers using TPM-backed LUKS full-disk encryption on Moxa Industrial Linux 3, where the discrete TPM is connected to the CPU via an SPI bus. Exploitation requires invasive physical ...
CVE-2026-0715
- EPSS 0.03%
- Veröffentlicht 05.02.2026 17:16:13
- Zuletzt bearbeitet 18.02.2026 17:51:47
Moxa Arm-based industrial computers running Moxa Industrial Linux Secure use a device-unique bootloader password provided on the device. An attacker with physical access to the device could use this information to access the bootloader menu via a ser...
CVE-2023-1257
- EPSS 0.11%
- Veröffentlicht 07.03.2023 17:15:12
- Zuletzt bearbeitet 21.11.2024 07:38:46
An attacker with physical access to the affected Moxa UC Series devices can initiate a restart of the device and gain access to its BIOS. Command line options can then be altered, allowing the attacker to access the terminal. From the terminal, the a...
CVE-2022-3086
- EPSS 0.24%
- Veröffentlicht 02.12.2022 20:15:13
- Zuletzt bearbeitet 21.11.2024 07:18:47
Cradlepoint IBR600 NCOS versions 6.5.0.160bc2e and prior are vulnerable to shell escape, which enables local attackers with non-superuser credentials to gain full, unrestrictive shell access which may allow an attacker to execute arbitrary code.