2 matches found
Moxa AWK-3121
1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit/public exploits available Vendor: Moxa Equipment: AWK-3121 Vulnerabilities: Cleartext Transmission of Sensitive Information, Improper Access Control, Sensitive Cookie without ‘HTTPONLY’ Flag, Improper...
CVE-2018-10690
The CVE-2018-10690 entry concerns Moxa AWK-3121 (version 1.14) where the device defaults to HTTP, enabling cleartext transmission of sensitive information. Multiple connected sources confirm the vulnerability is due to insecure web traffic allowing an attacker to sniff credentials and other data....