Moxa

Sds-3008-t Firmware

6 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2022-41312

Exploit
  • EPSS 1.05%
  • Veröffentlicht 07.02.2023 17:15:11
  • Zuletzt bearbeitet 04.11.2025 20:16:11

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP ...

5.4

CVE-2022-41313

Exploit
  • EPSS 2.32%
  • Veröffentlicht 07.02.2023 17:15:11
  • Zuletzt bearbeitet 04.11.2025 20:16:11

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP ...

7.5

CVE-2022-40224

Exploit
  • EPSS 11.7%
  • Veröffentlicht 07.02.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 07:21:06

A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger th...

5.3

CVE-2022-40691

Exploit
  • EPSS 1.29%
  • Veröffentlicht 07.02.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 07:21:51

An information disclosure vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HT...

7.5

CVE-2022-40693

Exploit
  • EPSS 0.18%
  • Veröffentlicht 07.02.2023 17:15:10
  • Zuletzt bearbeitet 21.11.2024 07:21:52

A cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted network sniffing can lead to a disclosure of sensitive information. An attacker can sniff n...

5.4

CVE-2022-41311

Exploit
  • EPSS 1.05%
  • Veröffentlicht 07.02.2023 17:15:10
  • Zuletzt bearbeitet 04.11.2025 20:16:11

A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP ...