5 matches found
Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches
Taiwanese company Moxa has released a security update to address a critical security flaw impacting its PT switches that could permit an attacker to bypass authentication guarantees. The vulnerability, tracked as CVE-2024-12297 , has been assigned a CVSS v4 score of 9.2 out of a maximum of 10.0...
CVE-2024-12297
creationtimestamp| type| source ---|---|--- 2025-01-15 10:07:41+00:00| seen| https://infosec.exchange/users/cve/statuses/113831815458773296 2025-01-15 10:10:52+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/1713 2025-01-15 10:15:46+00:00| seen|...
CVE-2024-12297 Frontend Authorization Logic Disclosure Vulnerability
Moxa’s Ethernet switch is vulnerable to an authentication bypass because of flaws in its authorization mechanism. Although both client-side and back-end server verification are involved in the process, attackers can exploit weaknesses in its implementation. These vulnerabilities may enable...
CVE-2024-12297 Frontend Authorization Logic Disclosure Vulnerability
Moxa’s Ethernet switch is vulnerable to an authentication bypass because of flaws in its authorization mechanism. Although both client-side and back-end server verification are involved in the process, attackers can exploit weaknesses in its implementation. These vulnerabilities may enable...
CVE-2024-12297
CVE-2024-12297 affects multiple Moxa devices where an authentication bypass arises from flaws in the authorization mechanism. Public sources detail vulnerable components including various Moxa PT switches (examples: PT-508/510/7528/7728/7828 series and PT-G503/G510/G7728/G7828 series) with specif...