Lucene search
+L

5 matches found

The Hacker News
The Hacker News
added 2022/02/14 8:12 a.m.44 views

Critical Security Flaws Reported in Moxa MXview Network Management Software

Technical details have been disclosed regarding a number of security vulnerabilities affecting Moxa's MXview web-based network management system, some of which could be chained by an unauthenticated adversary to achieve remote code execution on unpatched servers. The five security weaknesses "cou...

10CVSS2.6AI score0.15789EPSS
Exploits2
ThreatPost
ThreatPost
added 2022/02/11 9:51 p.m.189 views

Critical MQTT-Related Bugs Open Industrial Networks to RCE Via Moxa

Critical security vulnerabilities in Moxa’s MXview web-based network management system open the door to an unauthenticated remote code execution RCE as SYSTEM on any unpatched MXview server, researchers warned this week. The five bugs, affecting versions 3.x to 3.2.2, score a collective 10 out of...

10CVSS10AI score0.15789EPSS
Exploits0References6
Cvelist
Cvelist
added 2021/10/12 1:38 p.m.21 views

CVE-2021-38460 Moxa MXview Network Management Software

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries...

7.5CVSS7.8AI score0.01699EPSS
Exploits0References1
CVE
CVE
added 2021/10/12 1:38 p.m.58 views

CVE-2021-38460

MXview, version 3.x–3.2.2, contains CVE-2021-38460: a credential leakage/ unprotected transport vulnerability that may allow an attacker to obtain credentials. The condition is tied to password exposure in transit and storage, enabling potential unauthorized access. mitigations documented across ...

7.5CVSS7.8AI score0.01699EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/10/05 8:3 p.m.3 views

CVE-2021-38460

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries...

7.5CVSS7.3AI score0.01699EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder