Moxa

Mxview

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2021-40390

Exploit
  • EPSS 0.33%
  • Veröffentlicht 14.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:24:01

An authentication bypass vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. A specially-crafted HTTP request can lead to unauthorized access. An attacker can send an HTTP request to trigger this vulnerability.

7.5

CVE-2021-40392

Exploit
  • EPSS 0.15%
  • Veröffentlicht 14.04.2022 20:15:08
  • Zuletzt bearbeitet 21.11.2024 06:24:01

An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. Network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to exploit this vulnerability.

9.1

CVE-2021-38452

  • EPSS 0.6%
  • Veröffentlicht 12.10.2021 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:17:08

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.

10

CVE-2021-38454

  • EPSS 0.56%
  • Veröffentlicht 12.10.2021 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:17:08

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.

9.8

CVE-2021-38456

  • EPSS 0.22%
  • Veröffentlicht 12.10.2021 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:17:08

A use of hard-coded password vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to gain access through accounts using default passwords

9.8

CVE-2021-38458

  • EPSS 0.82%
  • Veröffentlicht 12.10.2021 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:17:08

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.

7.5

CVE-2021-38460

  • EPSS 0.64%
  • Veröffentlicht 12.10.2021 14:15:08
  • Zuletzt bearbeitet 21.11.2024 06:17:09

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.

7.8

CVE-2020-13536

Exploit
  • EPSS 0.03%
  • Veröffentlicht 05.11.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 05:01:27

An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary. By default MXViewS...

7.8

CVE-2020-13537

Exploit
  • EPSS 0.03%
  • Veröffentlicht 05.11.2020 21:15:12
  • Zuletzt bearbeitet 21.11.2024 05:01:27

An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary.By default MXViewSe...

7.5

CVE-2018-7506

  • EPSS 1.08%
  • Veröffentlicht 06.04.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:15

The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information.