Lucene search
K

89 matches found

BDU FSTEC
BDU FSTEC
added 2024/10/31 12:0 a.m.9 views

The vulnerability of the MXSecurity software platform for managing security in industrial networks lies in the use of strictly encrypted credentials, which allows attackers to disclose the protected information.

The vulnerability of the MXSecurity software platform for managing security in industrial networks is related to the use of strictly encrypted user credentials. Exploiting this vulnerability could allow an attacker to disclose the protected information...

7.8CVSS5.4AI score0.00274EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2024/10/23 12:0 a.m.7 views

Unspecified Vulnerability in MOXA MXsecurity

MOXA MXsecurity is a management platform from China-based MOXA. It provides centralized visibility and security management to easily monitor and identify network threats and prevent security misconfigurations to create a robust threat defense. A security vulnerability exists in MOXA MXsecurity...

7.5CVSS6.7AI score0.00345EPSS
Exploits0References1
NVD
NVD
added 2024/10/18 9:15 a.m.29 views

CVE-2024-4740

MXsecurity software versions v1.1.0 and prior are vulnerable because of the use of hard-coded credentials. This vulnerability could allow an attacker to tamper with sensitive data...

7.5CVSS0.00274EPSS
Exploits0References1
OSV
OSV
added 2024/10/18 9:15 a.m.5 views

CVE-2024-4740

MXsecurity software versions v1.1.0 and prior are vulnerable because of the use of hard-coded credentials. This vulnerability could allow an attacker to tamper with sensitive data...

7.5CVSS5.8AI score0.00274EPSS
Exploits0References1
OSV
OSV
added 2024/10/18 9:15 a.m.5 views

CVE-2024-4739

The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable. By acquiring a valid authenticator, an attacker can pose as an authorized user and successfully access the resource...

7.5CVSS5.8AI score0.00345EPSS
Exploits0References1
NVD
NVD
added 2024/10/18 9:15 a.m.18 views

CVE-2024-4739

The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable. By acquiring a valid authenticator, an attacker can pose as an authorized user and successfully access the resource...

7.5CVSS0.00345EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/18 8:21 a.m.32 views

CVE-2024-4740 MXsecurity Use of Hard-coded Credentials

MXsecurity software versions v1.1.0 and prior are vulnerable because of the use of hard-coded credentials. This vulnerability could allow an attacker to tamper with sensitive data...

5.3CVSS0.00274EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/18 8:21 a.m.20 views

CVE-2024-4740 MXsecurity Use of Hard-coded Credentials

MXsecurity software versions v1.1.0 and prior are vulnerable because of the use of hard-coded credentials. This vulnerability could allow an attacker to tamper with sensitive data...

5.3CVSS6.9AI score0.00274EPSS
Exploits0References1
CVE
CVE
added 2024/10/18 8:21 a.m.61 views

CVE-2024-4740

CVE-2024-4740 concerns MXsecurity software, affected in versions v1.1.0 and prior. The root cause cited is the use of hard-coded credentials, enabling an attacker to tamper with sensitive data. Public details explicitly cover impact as data tampering; no exploit status or in‑the‑wild details are ...

7.5CVSS5.5AI score0.00274EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/10/18 8:11 a.m.51 views

CVE-2024-4739

The issue pertains to MOXA MXsecurity, affecting versions v1.1.0 and prior. Root cause: lack of access restriction to resources, enabling an attacker who has a valid authenticator to impersonate an authorized user and access the resource. Impact: confidentiality could be exposed (as per CVE metri...

7.5CVSS5.5AI score0.00345EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.6 views

MOXA MXsecurity 安全漏洞

MOXA MXsecurity is a management platform from China-based MOXA. It provides centralized visibility and security management to easily monitor and identify network threats and prevent security misconfigurations to create a robust threat defense. A security vulnerability exists in MOXA MXsecurity...

7.5CVSS6.7AI score0.00345EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/10/18 12:0 a.m.5 views

MXsecurity 信任管理问题漏洞

MOXA MXsecurity is a management platform from China's Mosa MOXA Inc. that provides centralized visibility and security management to easily monitor and identify network threats and prevent security misconfigurations to create a robust threat defense. A trust management issue vulnerability exists ...

7.5CVSS6.6AI score0.00274EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.7 views

The vulnerability of the MXSecurity software platform for managing security in industrial networks stems from deficiencies in authentication procedures, allowing attackers to gain unauthorized access to protected information.

The vulnerability of the MXSecurity software platform for managing security in industrial networks is related to deficiencies in authentication procedures. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

7.8CVSS7.2AI score0.00618EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.6 views

The vulnerability of the MXSecurity software platform for managing security in industrial networks lies in its failure to protect the SQL query structure. This allows attackers to execute arbitrary commands and gain unauthorized access to protected information.

The vulnerability of the MXSecurity software platform for managing security in industrial networks stems from the lack of protective measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands and gain unauthorized access to protected...

7.5CVSS8AI score0.00516EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.6 views

The vulnerability of the MXSecurity software platform for managing security in industrial networks lies in the use of strictly encrypted credentials, which allows attackers to execute a type of “man-in-the-middle” attack.

The vulnerability of the MXSecurity software platform for managing security in industrial networks stems from the use of a strictly encrypted cryptographic key on the host. Exploiting this vulnerability allows an attacker operating remotely to execute a “man-in-the-middle” type attack...

7.8CVSS6.4AI score0.00369EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.5 views

The vulnerability in the software platform’s web service for managing security in industrial networks, MXSecurity, allows a perpetrator to increase their privileges.

The vulnerability of the software platform’s web service for managing security in industrial networks, MXSecurity, is related to insufficient entropy when assigning possible random values. Exploiting this vulnerability can allow a malicious actor to increase their privileges remotely...

10CVSS7.7AI score0.0074EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.5 views

The vulnerability of the nsm-web interface of the software platform for managing security in industrial networks from MXSecurity allows a perpetrator to register or add any device.

The vulnerability of the nsm-web interface of the MXSecurity software platform for managing security in industrial networks is related to insufficient control over the modification of dynamically defined object properties. Exploiting this vulnerability could allow a malicious actor to register or...

5.3CVSS5.9AI score0.0048EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/09/02 1:15 p.m.3 views

CVE-2023-39981

A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker...

7.5CVSS5.8AI score0.00618EPSS
Exploits0References1
OSV
OSV
added 2023/09/02 1:15 p.m.4 views

CVE-2023-39982

A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the confidentiality and integrity of SSH communications at risk on the affected device. This vulnerability is attributed to a hard-coded SSH host key, which might facilitate man-in-the-middle...

5.9CVSS5.7AI score0.00369EPSS
Exploits0References1
OSV
OSV
added 2023/09/02 1:15 p.m.3 views

CVE-2023-39980

A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1. This vulnerability arises when special elements are not neutralized correctly, allowing remote attackers to alter SQL commands...

8.1CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder