CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/04/27 4:16 a.m.•1 views

CVE-2026-3867

An improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-privileged authenticated user may access a configuration file containing the hashed password of the administrative account. Successful exploitation of this...

6CVSS0.0005EPSS

Cvelist•added 2026/04/27 2:56 a.m.•24 views

CVE-2026-3868

8.7CVSS0.00125EPSS

EUVD•added 2026/04/27 2:56 a.m.•0 views

EUVD-2026-25757

8.7CVSS5.9AI score0.00125EPSS

ATTACKERKB•added 2026/04/27 2:56 a.m.•1 views

CVE-2026-3868

8.7CVSS5.9AI score0.00125EPSS

Exploits0References2Affected Software2

CVE•added 2026/04/27 2:56 a.m.•6 views

CVE-2026-3868

CVE-2026-3868 (Moxa Secure Router) involves improper handling of length parameters in the HTTPS management interface. An unauthenticated remote attacker can send crafted requests to trigger a buffer overflow, causing the web service to become unresponsive and potentially requiring a device reboot...

8.7CVSS5.9AI score0.00125EPSS

Vulnrichment•added 2026/04/27 2:54 a.m.•1 views

CVE-2026-3867

ATTACKERKB•added 2026/04/27 2:54 a.m.•2 views

CVE-2026-3867

Exploits0References2Affected Software2

CVE•added 2026/04/27 2:54 a.m.•5 views

CVE-2026-3867

CVE-2026-3867 and CVE-2026-3868 affect Moxa’s Secure Router. CVE-2026-3867: improper ownership management may allow a low-privileged authenticated user to access a configuration file containing the hashed admin password when the config is exported, exposing sensitive information (confidentiality ...

EUVD•added 2026/04/27 2:54 a.m.•1 views

EUVD-2026-25756

8.7CVSS5.4AI score0.00125EPSS

Cvelist•added 2026/04/27 2:54 a.m.•26 views

CVE-2026-3867

6CVSS0.0005EPSS

Positive Technologies•added 2026/04/27 12:0 a.m.•2 views

PT-2026-35345

EUVD•added 2025/10/07 12:30 a.m.•1 views

Exploits0References4

EUVD-2016-0889

Malware in sbrugna...

7.8CVSS7.5AI score0.00723EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2006-3967

Malware in sbrugna...

4.3CVSS6.4AI score0.00783EPSS

Exploits1References7

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2016-0890

Malware in sbrugna...

7.8CVSS7.5AI score0.00604EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-0887

Malware in sbrugna...

7.5CVSS7.5AI score0.00312EPSS

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2016-0888

Malware in sbrugna...

7.8CVSS7.5AI score0.00723EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-0886

Malware in sbrugna...

7.5CVSS7.5AI score0.00585EPSS

Tenable Nessus•added 2023/08/02 12:0 a.m.•11 views

Moxa EDR-G903 Secure Router Plaintext Storage of a Password (CVE-2016-0876)

Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to discover cleartext passwords by reading a configuration file. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

7.5CVSS7.4AI score0.00312EPSS

Tenable Nessus•added 2023/08/02 12:0 a.m.•13 views

Moxa EDR-G903 Secure Router Privilege Escalation (CVE-2016-0875)

Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to read configuration and log files via a crafted URL. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

7.5CVSS7.3AI score0.00585EPSS