6 matches found
EUVD-2024-50752
Malicious code in bioql PyPI...
CVE-2024-12297
Moxa’s Ethernet switch is vulnerable to an authentication bypass because of flaws in its authorization mechanism. Although both client-side and back-end server verification are involved in the process, attackers can exploit weaknesses in its implementation. These vulnerabilities may enable...
CVE-2024-12297
CVE-2024-12297 affects multiple Moxa devices where an authentication bypass arises from flaws in the authorization mechanism. Public sources detail vulnerable components including various Moxa PT switches (examples: PT-508/510/7528/7728/7828 series and PT-G503/G510/G7728/G7828 series) with specif...
PT-2025-1115
Name of the Vulnerable Software and Affected Versions Moxa EDS-508A Series versions 3.11 and earlier Description The Moxa EDS-508A Series Ethernet switch is vulnerable to an authentication bypass due to flaws in its authorization mechanism. Although both client-side and back-end server verificati...
The vulnerability of the microprogrammed Ethernet switch software from Moxa series, namely EDR-8010, EDR-G9004, EDR-G9010, EDG-G1002-BP, NAT-102, G4302-LTE4, and TN-4900, arises due to the lack of measures taken to neutralize specific components used in the operating system. This vulnerability allows a perpetrator to execute arbitrary code.
The vulnerability of the microprogrammed Ethernet switch software from Moxa series, such as EDR-8010, EDR-G9004, EDR-G9010, EDG-G1002-BP, NAT-102, G4302-LTE4, and TN-4900, exists due to the lack of measures to neutralize specific components. Exploiting this vulnerability allows a remote attacker ...
The vulnerability of the microprogrammed Ethernet switch software from Moxa, models PT-7528 and PT-7828, stems from the use of a rigidly encrypted cryptographic key for encrypting account data. This allows attackers to enhance their privileges.
The vulnerability of the microprogrammed Ethernet switch software of Moxa PT-7528 and Moxa PT-7828 lies in the use of a rigidly encrypted cryptographic key, which is used for encrypting account data. Exploiting this vulnerability allows a remote attacker to enhance their privileges...