2 matches found
CVE-2017-12127
CVE-2017-12127 affects Moxa EDR-810 (V4.1, build 17030317). A password storage vulnerability allows an attacker with shell access to read plaintext credentials from /magicP/cfg4.0/cfg_file/USER_ACCOUNT.CFG (mirrors /etc/shadow). CVSSv3.0 score ~4.4 (MEDIUM) with LOCAL access and HIGH confidential...
Moxa EDR-810 Plaintext Password Storage Vulnerability(CVE-2017-12127)
Summary An password storage vulnerability exists in the operating system functionality of Moxa EDR-810 V4.1 build 17030317. An attacker with shell access could extract passwords in clear text from the device. Tested Versions Moxa EDR-810 V4.1 build 17030317 Product URLs...