3 matches found
The vulnerability of the web-based service for microprogramming software controlling switches of the EDS-4000/G4000 series allows a hacker to send requests to a vulnerable device and act on its behalf for other network devices.
The vulnerability of the web-based service for microprogrammed software-controlled switches of the EDS-4000/G4000 series lies in the ability to bypass access control mechanisms. Exploiting this vulnerability allows a malicious actor to send requests to the vulnerable device and act on its behalf...
CVE-2024-0387
The EDS-4000/G4000 Series prior to version 3.2 includes IP forwarding capabilities that users cannot deactivate. An attacker may be able to send requests to the product and have it forwarded to the target. An attacker can bypass access controls or hide the source of malicious requests...
MOXA EDS-4000/G4000 Series 安全漏洞
MOXA EDS-4000/G4000 Series is a series of industrial managed Ethernet switches from MOXA, China. A security bypass vulnerability exists in MOXA EDS-4000/G4000 Series prior to version 3.2, which originates from a user-deactivatable IP forwarding feature, and can be exploited by an attacker to bypa...