Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.18 views

Moxa IKS, EDS Missing Encryption of Sensitive Data (CVE-2019-6526)

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

9.8CVSS8.4AI score0.00989EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/06/27 12:0 a.m.17 views

Moxa Switch IKS-G6824A Detection

Binary data 764388.prm...

7.3AI score
Exploits0
OSV
OSV
added 2019/04/15 12:31 p.m.3 views

CVE-2019-6526

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

9.8CVSS7.3AI score
Exploits0References1
NVD
NVD
added 2019/04/15 12:31 p.m.19 views

CVE-2019-6526

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

9.8CVSS9.5AI score0.00989EPSS
Exploits0References1
Prion
Prion
added 2019/04/15 12:31 p.m.18 views

Default credentials

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

5CVSS9.3AI score0.00989EPSS
Exploits0References1Affected Software4
Cvelist
Cvelist
added 2019/04/12 8:11 p.m.19 views

CVE-2019-6526

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

9.5AI score0.00989EPSS
Exploits0References1
CVE
CVE
added 2019/04/12 8:11 p.m.51 views

CVE-2019-6526

CVE-2019-6526 affects Moxa IKS-G6824A (v5.6 and prior) and EDS-405A/408A/510A (v3.8 and prior). The root cause is plaintext transmission of sensitive data, enabling potential capture of credentials such as an administrative password. Remediation per sources: apply firmware patches and consider co...

9.8CVSS9.3AI score0.00989EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.4 views

The vulnerability of the microprogramming software of the Moxa IKS-G6824A switch allows a intruder to gain unauthorized access to the device.

The vulnerability of the Moxa IKS-G6824A switch’s microprogramming software is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to the device...

9.1CVSS7.2AI score0.0165EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.4 views

The vulnerability of the microprogramming software of the Moxa IKS-G6824A switch allows a intruder to execute arbitrary code.

The vulnerability of Moxa IKS-G6824A microcontroller-based software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.8CVSS8.2AI score0.04971EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.6 views

The vulnerability of the microprogramming software of the Moxa IKS-G6824A switch allows a intruder to gain unauthorized access to the device.

The vulnerability of Moxa IKS-G6824A microcontroller-based software is related to insufficient verification of the authenticity of executed requests. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to the device...

9.6CVSS7.6AI score0.01216EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2019/03/22 12:0 a.m.4 views

The vulnerability of the microprogramming software of the Moxa IKS-G6824A switch allows a intruder to perform a cross-site scripting attack.

The vulnerability of the Moxa IKS-G6824A switch’s microprogramming software is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform a cross-site scripting attack remotely...

9.6CVSS6AI score0.01079EPSS
Exploits0References3
Symantec
Symantec
added 2019/02/26 12:0 a.m.14 views

Moxa IKS and EDS ICSA-19-057-01 Multiple Security Vulnerabilities

Description Moxa IKS and EDS are prone to following security vulnerabilities: 1. A cross-site-scripting vulnerability 2. Multiple stack-based buffer-overflow vulnerabilities 3. A security vulnerability 4. An information disclosure vulnerability 5. A cross-site request-forgery vulnerability 6...

0.7AI score
Exploits0References1Affected Software4
Rows per page
Query Builder