EUVD-2015-6405

Malware in sbrugna...

EUVD-2015-6407

Malware in sbrugna...

The vulnerability in the embedded web server software of GoAhead’s Ethernet switch microprogramming systems of the Moxa EDS-405A and Moxa EDS-408A series allows a intruder to cause service interruptions.

The vulnerability in the embedded web server software of GoAhead’s Ethernet switch microprogramming devices of the Moxa EDS-405A and Moxa EDS-408A series is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

The vulnerability of the administrative web interface of the Microprogrammable Ethernet switches from the Moxa EDS-405A and Moxa EDS-408A series allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the administrative web interface of Microprogramming Software for Ethernet switches of the Moxa EDS-405A and Moxa EDS-408A series is related to deficiencies in access control. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain...

Moxa IKS, EDS Missing Encryption of Sensitive Data (CVE-2019-6526)

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

The vulnerability of the microprogrammed Ethernet switch software from Moxa EDS-405A series lies in the fact that the output operation goes beyond the buffer on the stack, allowing a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the microprogrammed Ethernet switch software from Moxa EDS-405A series lies in the fact that the operation is performed outside the buffer on the stack during password verification. Exploiting this vulnerability allows a malicious actor to cause service failures or execute...

The vulnerability of the microprogrammed Ethernet switch software from Moxa EDS-405A series, related to buffer overflow, allows a hacker to trigger a service failure.

The vulnerability of the microprogrammed Ethernet switch software from Moxa EDS-405A series is related to buffer overflow attacks. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure by sending HTTP GET requests to the vulnerable device...

The vulnerability of the microprogrammed Ethernet switch software from Moxa series EDS-405A lies in insufficient validation of input data, allowing a intruder to trigger a service failure.

The vulnerability of the microprogrammed Ethernet switch software from Moxa EDS-405A series exists due to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures by sending HTTP GET requests to the vulnerable device...

Denial of Service Vulnerability in MOXA EDS-405A Industrial Switch

The EDS-405A/408A series are 5-port and 8-port entry-level managed Ethernet switches designed for industrial applications. A denial-of-service vulnerability exists in the MOXA EDS-405A industrial switches, which can be exploited by an attacker to construct a special data message that can cause th...

Moxa Switch EDS-405A Detection

Binary data 764385.prm...

CVE-2019-6526

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

CVE-2019-6526

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

Default credentials

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

CVE-2019-6526

CVE-2019-6526 affects Moxa IKS-G6824A (v5.6 and prior) and EDS-405A/408A/510A (v3.8 and prior). The root cause is plaintext transmission of sensitive data, enabling potential capture of credentials such as an administrative password. Remediation per sources: apply firmware patches and consider co...

CVE-2019-6526

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative...

Moxa IKS and EDS ICSA-19-057-01 Multiple Security Vulnerabilities

Description Moxa IKS and EDS are prone to following security vulnerabilities: 1. A cross-site-scripting vulnerability 2. Multiple stack-based buffer-overflow vulnerabilities 3. A security vulnerability 4. An information disclosure vulnerability 5. A cross-site request-forgery vulnerability 6...

PT-2017-3772 · Moxa · Moxa Eds-405A +3

Name of the Vulnerable Software and Affected Versions: Moxa EDS-405A versions affected versions not specified Moxa EDS-408A versions affected versions not specified Moxa EDS-510A versions affected versions not specified Moxa IKS versions affected versions not specified Description: The issue is...

Moxa EDS-405A/408A < 3.6 Multiple Vulnerabilities

Moxa EDS-405A and EDS-408A devices are prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPEPREFIX =...

CVE-2015-6465

The GoAhead web server on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to cause a denial of service reboot via a crafted URL...

Code injection

The GoAhead web server on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to cause a denial of service reboot via a crafted URL...