Moxa MB3xxx Series Protocol Gateways Weak Password Requirements (CVE-2019-9096)

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. Insufficient password requirements for the MGate web application may allow an attacker to gain access by brute-forcing accoun...

Moxa MGate Man-in-The-Middle (CVE-2022-27048)

A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle MITM attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 ...

Moxa MB3xxx Series Protocol Gateways Cleartext Transmission of Sensitive Information (CVE-2019-9101)

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. Sensitive information is sent to the web server in cleartext, which may allow an attacker to discover the credentials if they...

CVE-2022-27048

A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle MITM attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 ...

CVE-2022-27048

A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle MITM attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 ...

Design/Logic Flaw

A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle MITM attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 ...

CVE-2022-27048

CVE-2022-27048 affects Moxa MGate protocol gateways (MB3170, MB3270, MB3280, MB3480) with firmware versions at or below 4.2/4.1/3.2 depending on model, where a MITM vulnerability is possible via network-facing components. The issue is described as enabling a man-in-the-middle attack on vulnerable...

Moxa MGate 安全漏洞

Moxa MGate is a series of Ethernet gateway products from Moxa China. A security vulnerability exists in the Moxa MGate that allows an attacker to perform a man-in-the-middle MITM attack on the device. This affects MGate MB3170 series firmware version 4.2 or lower. and MGate MB3270 series firmware...

Moxa MGate 多款产品安全漏洞

MOXA Moxa MGate MB3280 and Moxa MGate MB3480 are both products of MOXA Corporation, Taiwan, China.Moxa MGate MB3280 is a MB3280 series Ethernet gateway product.Moxa MGate MB3480 is a MB3480 series Ethernet gateway product. A security vulnerability exists in the Moxa MGate MB3180/MB3280/MB3480...

CVE-2019-9104

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. The application's configuration file contains parameters that represent passwords in cleartext...

CVE-2019-9099

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. A Buffer overflow in the built-in web server allows remote attackers to initiate DoS, and probably to execute arbitrary code...

CVE-2019-9101

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. Sensitive information is sent to the web server in cleartext, which may allow an attacker to discover the credentials if they...

CVE-2019-9097

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. A high rate of transit traffic may cause a low-memory condition and a denial of service...

CVE-2019-9099

Summary: CVE-2019-9099 affects Moxa MGate MB3170/MB3270 (before 4.1), MB3280/MB3480 (before 3.1), MB3660 (before 2.3), and MB3180 (before 2.1) where a buffer overflow in the built‑in web server can cause a remote DoS and may allow arbitrary code execution . The root cause is a stack‑based overflo...

CVE-2019-9103

CVE-2019-9103 affects Moxa MB3xxx Protocol Gateways (MB3170/MB3270 before 4.1, MB3280/MB3480 before 3.1, MB3660 before 2.3, MB3180 before 2.1). The vulnerability allows an unauthenticated attacker to access sensitive information via the built-in WEB service, enabling potential username disclosure...

Weak Password Vulnerability in Multiple Moxa Products

Moxa MB3170/MB3270/MB3180/MB3280/MB3480/MB3660 series is an advanced Ethernet gateway device manufactured by moxa Taiwan. A weak password vulnerability exists in several Moxa products, which can be exploited by attackers to gain access by performing a brute force attack...

Weak Encryption Algorithm Vulnerability in Multiple Moxa Products

Moxa MB3170/MB3270/MB3180/MB3280/MB3480/MB3660 series is an advanced Ethernet gateway device manufactured by moxa Taiwan. Weak encryption algorithm vulnerability in multiple Moxa products can be exploited by attackers to obtain sensitive information...

Information Disclosure Vulnerability in Multiple Moxa Products (CNVD-2020-18360)

Moxa MB3170/MB3270/MB3180/MB3280/MB3480/MB3660 series is an advanced Ethernet gateway device manufactured by moxa Taiwan. An information disclosure vulnerability exists in multiple Moxa products, which can be exploited by attackers to gain access to administrative accounts...

Multiple Moxa Products Plaintext Transfer Vulnerability

Moxa MB3170/MB3270/MB3180/MB3280/MB3480/MB3660 series is an advanced Ethernet gateway device manufactured by moxa Taiwan. An information disclosure vulnerability exists in multiple Moxa products, which can be exploited by attackers to obtain sensitive information...

Unauthorized access vulnerability in moxa mb3170 and mb3270 gateways

MOXA MB3180/MB3280/MB3480 series is an advanced Ethernet gateway device manufactured by moxa technology corporation in Taiwan. An information disclosure vulnerability exists in the MOXA MB3180/MB3280/MB3480 Series Advanced Ethernet Gateways, which can be exploited by attackers to launch further...