Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.MOXA_MXSECURITY_CVE-2023-33236.NBINHistoryJun 05, 2023 - 12:00 a.m.
Moxa MXsecurity Series Hard-coded JWT Key Authentication Bypass (CVE-2023-33236)
2023-06-0500:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
The Moxa MXsecurity Series running on the remote host uses a hard-coded JWT key. An unauthenticated, remote attacker can exploit this, via a specially crafted message, to bypass authentication to perform otherwise restricted operations.
Binary data moxa_mxsecurity_cve-2023-33236.nbin| Vendor | Product | Version | CPE |
|---|---|---|---|
| moxa | mxsecurity | cpe:/a:moxa:mxsecurity |
Related
cve
cve
CVE-2023-33236
2023-05-22 07:15:09
zdi
zdi
Moxa MXsecurity Series Hardcoded JWT Key Authentication Bypass Vulnerability
2023-05-24 00:00:00
prion
prion
Hardcoded credentials
2023-05-22 07:15:00
ics
ics
Moxa MXsecurity Series
2023-05-25 12:00:00
wallarmlab
wallarmlab
OWASP APIsec Top-10 2023 Is HereΒ | API Security Newsletter
2023-06-15 14:33:48
Related for MOXA_MXSECURITY_CVE-2023-33236.NBIN