Lucene search
K

75 matches found

CNVD
CNVD
added 2017/09/08 12:0 a.m.3 views

Moxa SoftCMS Live Viewer SQL Injection Vulnerability

Moxa SoftCMS Live Viewer is a software package developed by Moxa for remote monitoring and debugging of industrial automation systems. A SQL injection vulnerability exists in Moxa SoftCMS Live Viewer 1.6 and earlier versions. A remote attacker can exploit this vulnerability to access SoftCMS Live...

9.8CVSS9.8AI score0.01169EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/01 12:0 a.m.0 views

Moxa SoftCMS Live Viewer SQL Injection Vulnerability

Moxa SoftCMS Live Viewer is a video surveillance software designed for industrial automation systems. A SQL injection vulnerability exists in Moxa SoftCMS Live Viewer 1.6 and earlier versions, which can be exploited by an attacker to access SoftCMS without knowing the user's password...

8AI score
Exploits0References1
ICS
ICS
added 2017/08/31 12:0 a.m.34 views

Moxa SoftCMS Live Viewer

CVSS v3 9.8 AFFECTED PRODUCTS The following versions of SoftCMS Live Viewer, a video surveillance software designed for industrial automation systems, are affected: SoftCMS Live Viewer, Version 1.6 and prior versions. IMPACT Successful exploitation of this vulnerability could allow an...

9.8CVSS10AI score0.01169EPSS
Exploits0References3
OSV
OSV
added 2017/02/13 9:59 p.m.5 views

CVE-2016-9332

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. Moxa SoftCMS Webserver does not properly validate input. An attacker could provide unexpected values and cause the program to crash or excessive consumption of resources could result in a denial-of-service condition...

7.5CVSS5.8AI score0.08239EPSS
Exploits3References3
NVD
NVD
added 2017/02/13 9:59 p.m.12 views

CVE-2016-9333

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. The SoftCMS Application does not properly sanitize input that may allow a remote attacker access to SoftCMS with administrator's privilege through specially crafted input SQL INJECTION...

9.8CVSS9.4AI score0.01885EPSS
Exploits0References2
OSV
OSV
added 2017/02/13 9:59 p.m.4 views

CVE-2016-9333

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. The SoftCMS Application does not properly sanitize input that may allow a remote attacker access to SoftCMS with administrator's privilege through specially crafted input SQL INJECTION...

9.8CVSS5.8AI score0.01885EPSS
Exploits0References2
Prion
Prion
added 2017/02/13 9:59 p.m.10 views

Double free

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of...

6.8CVSS7.5AI score0.02072EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2017/02/13 9:59 p.m.11 views

Race condition

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. Moxa SoftCMS Webserver does not properly validate input. An attacker could provide unexpected values and cause the program to crash or excessive consumption of resources could result in a denial-of-service condition...

7.8CVSS6.9AI score0.08239EPSS
Exploits3References3Affected Software1
OSV
OSV
added 2017/02/13 9:59 p.m.1 views

CVE-2016-8360

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of...

8.1CVSS6AI score0.02072EPSS
Exploits0References2
Prion
Prion
added 2017/02/13 9:59 p.m.11 views

Sql injection

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. The SoftCMS Application does not properly sanitize input that may allow a remote attacker access to SoftCMS with administrator's privilege through specially crafted input SQL INJECTION...

7.5CVSS7.1AI score0.01885EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/02/13 9:59 p.m.16 views

CVE-2016-8360

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of...

8.1CVSS8.5AI score0.02072EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2017/02/13 9:59 p.m.0 views

CVE-2016-8360

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of...

8.1CVSS6.1AI score0.02072EPSS
Exploits0References3
CVE
CVE
added 2017/02/13 9:0 p.m.43 views

CVE-2016-9333

CVE-2016-9333 affects Moxa SoftCMS prior to version 1.6. The SoftCMS Webserver fails to properly sanitize input, enabling SQL Injection that could allow a remote attacker to gain administrator privileges. The vulnerability has been assigned CVSS v3 base score 9.8 (CRITICAL) with network access, n...

9.8CVSS9.2AI score0.01885EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/02/13 9:0 p.m.21 views

CVE-2016-8360

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an attacker to modify memory locations and possibly cause a denial of service or the execution of...

8.1AI score0.02072EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/02/13 9:0 p.m.18 views

CVE-2016-9333

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. The SoftCMS Application does not properly sanitize input that may allow a remote attacker access to SoftCMS with administrator's privilege through specially crafted input SQL INJECTION...

9.4AI score0.01885EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/02/13 9:0 p.m.18 views

CVE-2016-9332

An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. Moxa SoftCMS Webserver does not properly validate input. An attacker could provide unexpected values and cause the program to crash or excessive consumption of resources could result in a denial-of-service condition...

7.4AI score0.08239EPSS
Exploits3References3
CVE
CVE
added 2017/02/13 9:0 p.m.58 views

CVE-2016-9332

CVE-2016-9332 affects Moxa SoftCMS Webserver prior to version 1.6. The vulnerability stems from improper input validation in the ASP Webserver, allowing an attacker to provide unexpected values that can crash the application or cause excessive resource consumption, potentially leading to a denial...

7.8CVSS7.4AI score0.08239EPSS
Exploits3References3Affected Software1
CVE
CVE
added 2017/02/13 9:0 p.m.45 views

CVE-2016-8360

CVE-2016-8360 affects Moxa SoftCMS Webserver in versions before 1.6. A specially crafted URL request can trigger a double-free condition, enabling memory corruption that could lead to denial of service or arbitrary code execution. Severity is high (CVSSv3 base 8.1) with network access required an...

8.1CVSS8AI score0.02072EPSS
Exploits0References2Affected Software1
Zero Day Initiative
Zero Day Initiative
added 2016/11/23 12:0 a.m.26 views

Moxa SoftCMS AspWebServer URL Processing Double Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Moxa SoftCMS. Authentication is not required to exploit this vulnerability. The specific flaw exists within processing of requests to the web server. A crafted URL can cause a pointer to be reused...

7.6CVSS4AI score0.02072EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/21 12:0 a.m.3 views

Moxa SoftCMS Input Validation Vulnerability

Moxa SoftCMS is a set of centralized management software for large-scale surveillance systems developed by Moxa. The software supports real-time video surveillance, video playback and event management. An input validation vulnerability exists in versions of Moxa SoftCMS prior to 1.6. An attacker...

7.8CVSS6.7AI score0.08239EPSS
Exploits3References1
Rows per page
Query Builder