CVE-2022-40693

A cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability...

The vulnerability of the microprogrammed Ethernet switches Moxa SDS-3008 lies in the insufficient protection of the web page structure, allowing attackers to execute arbitrary JavaScript code.

The vulnerability of the microprogrammed Ethernet switches from Moxa, the SDS-3008 model, is related to insufficient protection of the website structure when processing the Switch Description field in the Switch Information section. Exploiting this vulnerability allows an attacker to execute...

MOXA SDS-3008 安全漏洞

Moxa SDS-3008 is a series of industrial switches from MOXA China. The Moxa SDS-3008 suffers from a plaintext transmission vulnerability that can be exploited by an attacker to cause the disclosure of sensitive information via specially crafted network sniffing...

Moxa EDS-G516E Buffer Overflow Vulnerability

Moxa EDS-G516E is a managed switch from Moxa Taiwan, China. A buffer overflow vulnerability exists in the Moxa EDS-G516E Series using firmware version 5.2 and earlier. The vulnerability originates when a network system or product performs an operation on memory without properly validating data...

The vulnerability of the microprogramming software of Moxa EDS-G516E and Moxa EDS-510E switches lies in the use of a unstable cryptographic algorithm in the configuration files. This allows an intruder to gain unauthorized access to the protected information.

The vulnerability of the microprogramming software for Moxa EDS-G516E and Moxa EDS-510E switches is related to the use of a unstable cryptographic algorithm in the configuration files. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected...

Moxa Switch EDS-205A Detection

Binary data 764861.prm...

Moxa Switch EDS-408A Detection

Binary data 764386.prm...

Moxa Switch EDS-405A Detection

Binary data 764385.prm...

Moxa Switch IKS-G6824A Detection

Binary data 764388.prm...

Moxa Switch EDS-510A Detection

Binary data 764387.prm...

The vulnerability of the microprogramming software of the Moxa IKS-G6824A switch allows a intruder to gain unauthorized access to protected information or trigger a device restart.

The vulnerability of the Moxa IKS-G6824A switch’s microprogramming software relates to reading data outside the buffer in memory. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information or cause the device to reboot...

MOXA EDS-G512E Public and Private Key Extraction Vulnerability

The MOXA EDS-G512E is a Gigabit Ethernet managed switch. A public and private key extraction vulnerability exists in MOXA EDS-G512E 5.1 build 16072215. An attacker can exploit this vulnerability to extract the public and private keys from the firmware image available on the MOXA website and use...