Lucene search
K

121 matches found

Cvelist
Cvelist
added 2020/03/11 2:27 p.m.20 views

CVE-2019-9096

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. Insufficient password requirements for the MGate web application may allow an attacker to gain access by brute-forcing accoun...

9.8CVSS9.8AI score0.01861EPSS
Exploits0References2
CVE
CVE
added 2020/03/11 2:27 p.m.54 views

CVE-2019-9096

CVE-2019-9096 affects Moxa MGate MB3170/MB3270 (firmware <=4.0), MB3180 (<=2.0), MB3280/MB3480 (<=3.0), MB3660 (

9.8CVSS9.6AI score0.01861EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/03/11 2:27 p.m.53 views

CVE-2019-9104

CVE-2019-9104 affects Moxa MGate MB3170/MB3270 (before 4.1), MB3180 (before 2.1), MB3280/MB3480 (before 3.1), and MB3660 (before 2.3). The issue is that the device configuration file stores passwords in cleartext, enabling potential information disclosure. The threat is elevated by network exposu...

9.8CVSS7.5AI score0.01065EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.16 views

CVE-2019-9099

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. A Buffer overflow in the built-in web server allows remote attackers to initiate DoS, and probably to execute arbitrary code...

7.5CVSS10AI score0.03941EPSS
Exploits0References2
CVE
CVE
added 2020/03/11 2:27 p.m.56 views

CVE-2019-9099

Summary: CVE-2019-9099 affects Moxa MGate MB3170/MB3270 (before 4.1), MB3280/MB3480 (before 3.1), MB3660 (before 2.3), and MB3180 (before 2.1) where a buffer overflow in the built‑in web server can cause a remote DoS and may allow arbitrary code execution . The root cause is a stack‑based overflo...

9.8CVSS9.9AI score0.03941EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.24 views

CVE-2019-9097

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. A high rate of transit traffic may cause a low-memory condition and a denial of service...

7.5CVSS5.3AI score0.01578EPSS
Exploits0References2
CVE
CVE
added 2020/03/11 2:27 p.m.61 views

CVE-2019-9102

CVE-2019-9102 affects Moxa MB3xxx Protocol Gateways: MB3170/MB3270 firmware <=4.0, MB3280/MB3480 <=3.0, MB3660 <=2.2, and MB3180

8.8CVSS8.8AI score0.01492EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/03/11 2:27 p.m.55 views

CVE-2019-9097

CVE-2019-9097 affects Moxa MB3xxx Protocol Gateways (MB3170/MB3270 before 4.1, MB3280/MB3480 before 3.1, MB3660 before 2.3, MB3180 before 2.1). The issue is an overload from high transit traffic that can exhaust memory and cause a denial of service. The Tenable OT plugin and CVE overview describe...

7.5CVSS5.3AI score0.01578EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/03/11 2:27 p.m.48 views

CVE-2019-9101

CVE-2019-9101 affects Moxa MGate MB3xxx Series Protocol Gateways (MB3170/MB3270 up to firmware 4.1, MB3280/MB3480 up to 3.1, MB3660 up to 2.3, MB3180 up to 2.1). The issue causes sensitive information to be transmitted to the web server in cleartext, which may allow an attacker observing traffic ...

8.8CVSS7.3AI score0.0094EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.21 views

CVE-2019-9104

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. The application's configuration file contains parameters that represent passwords in cleartext...

9.8CVSS7.6AI score0.01065EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.18 views

CVE-2019-9103

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. An attacker can access sensitive information e.g., conduct username disclosure attacks on the built-in WEB-service without...

5.3CVSS5.2AI score0.01346EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.22 views

CVE-2019-9101

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. Sensitive information is sent to the web server in cleartext, which may allow an attacker to discover the credentials if they...

8.8CVSS7.4AI score0.0094EPSS
Exploits0References2
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.32 views

CVE-2019-9095

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. An attacker may be able to intercept weakly encrypted passwords and gain administrative access...

6.2CVSS9.6AI score0.00746EPSS
Exploits0References2
CVE
CVE
added 2020/03/11 2:27 p.m.49 views

CVE-2019-9103

CVE-2019-9103 affects Moxa MB3xxx Protocol Gateways (MB3170/MB3270 before 4.1, MB3280/MB3480 before 3.1, MB3660 before 2.3, MB3180 before 2.1). The vulnerability allows an unauthenticated attacker to access sensitive information via the built-in WEB service, enabling potential username disclosure...

5.3CVSS5.1AI score0.01346EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/03/11 2:27 p.m.64 views

CVE-2019-9095

CVE-2019-9095 affects Moxa MGate MB31xx/MB32xx/MB36xx/MB3180 gateways. The vulnerability arises from use of a broken or risky cryptographic algorithm that may allow an attacker to intercept weakly encrypted passwords and gain administrative access. Affected firmware versions include MB3170/MB3270...

9.8CVSS9.5AI score0.00746EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/03/11 2:27 p.m.61 views

CVE-2019-9098

CVE-2019-9098 affects Moxa MGate MB3170/MB3270 (firmware <4.1), MB3180 (<2.1), MB3280 (<3.1), MB3480 (<3.1), and MB3660 (

7.5CVSS7.7AI score0.0206EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/03/11 2:27 p.m.19 views

CVE-2019-9098

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. An Integer overflow in the built-in web server allows remote attackers to initiate DoS...

7.5CVSS7.7AI score0.0206EPSS
Exploits0References2
CNVD
CNVD
added 2020/03/09 12:0 a.m.2 views

Moxa MGate 5105-MB-EIP OS Command Injection Vulnerability

The MGate 5105-MB-EIP is an industrial Ethernet gateway that supports MQTT or third-party cloud services e.g., Azure and Alibaba Cloud to build Modbus RTU/ASCII/TCP and EtherNet/IP network communications for IIoT applications. An operating system command injection vulnerability exists in the...

9CVSS8.1AI score0.07439EPSS
Exploits0References1
CNVD
CNVD
added 2020/02/26 12:0 a.m.3 views

Buffer Overflow Vulnerability in Multiple Moxa Products

Moxa MGate MB3170, etc. are products of Moxa Corporation, Taiwan, China.Moxa MGate MB3170 is an MB3170 series Ethernet gateway product.Moxa MGate MB3270 is an MB3270 series Ethernet gateway product.Moxa MGate MB3280 is an MB3280 series Ethernet gateway product. A buffer overflow vulnerability...

9.8CVSS7.7AI score0.03941EPSS
Exploits0References1
NVD
NVD
added 2020/02/14 6:15 p.m.19 views

CVE-2020-8858

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Moxa MGate 5105-MB-EIP firmware version 4.1. Authentication is required to exploit this vulnerability. The specific flaw exists within the DestIP parameter within MainPing.asp. The issue results from...

9CVSS8.9AI score0.07439EPSS
Exploits0References2
Rows per page
Query Builder