CVE-2015-6480

2015-12-21T11:59:00
ID CVE-2015-6480
Type cve
Reporter cve@mitre.org
Modified 2015-12-21T21:01:00

Description

The MessageBrokerServlet servlet in Moxa OnCell Central Manager before 2.2 does not require authentication, which allows remote attackers to obtain administrative access via a command, as demonstrated by the addUserAndGroup action.