Lucene search
HistorySep 11, 2015 - 4:59 p.m.
CVE-2015-6464
8.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:N/I:C/A:C
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
54.1%
The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web-developer plugin.
Affected configurations
Node
moxaeds-405a_firmwareRange≤3.4
ORmoxaeds-408a_firmwareRange≤3.4
moxaeds-405aMatch-
ORmoxaeds-408aMatch-
Related
cvelist
cvelist
CVE-2015-6464
2015-09-11 16:00:00
prion
prion
Design/Logic Flaw
2015-09-11 16:59:00
cve
cve
CVE-2015-6464
2015-09-11 16:59:07
nessus
nessus
Moxa Industrial Managed Switch Improper Privilege Management (CVE-2015-6464)
2023-08-02 00:00:00
ics
ics
Moxa Industrial Managed Switch Vulnerabilities
2018-08-27 12:00:00
openvas
openvas
Moxa EDS-405A/408A < 3.6 Multiple Vulnerabilities
2016-06-23 00:00:00
8.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:N/I:C/A:C
6.3 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
54.1%
Related for NVD:CVE-2015-6464