4 matches found
CVE-2019-10963
Moxa EDR 810, all versions 5.1 and prior, allows an unauthenticated attacker to be able to retrieve some log files from the device, which may allow sensitive information disclosure. Log files must have previously been exported by a legitimate user...
Moxa EDR 810 Series Improper Access Control (CVE-2019-10963)
Moxa EDR 810, all versions 5.1 and prior, allows an unauthenticated attacker to be able to retrieve some log files from the device, which may allow sensitive information disclosure. Log files must have previously been exported by a legitimate user. This plugin only works with Tenable.ot. Please...
Moxa EDR-810 - Command Injection Information Disclosure
Moxa EDR-810 - Command Injection Information Disclosure During an engagement for a client, RandoriSec found 2 vulnerabilities on Moxa EDR-810 Series Secure Routers. The first one is a command injection vulnerability found on the CLI allowing an authenticated user to obtain root privileges. And th...
CVE-2019-10963
CVE-2019-10963 affects Moxa EDR-810 Series routers (all versions 5.1 and prior). An unauthenticated attacker can retrieve log files from the device, potentially disclosing sensitive information due to improper access control. Mitigation per public advisories is upgrading to firmware 5.2 or later ...