Mb3170 Firmware Security Vulnerabilities and Issues — Mb3170 Firmware CVE List

MoxaMb3170 Firmware

9 matches found

CVE•added 2020/03/11 2:27 p.m.•54 views

CVE-2019-9102

CVE-2019-9102 affects Moxa MB3xxx Protocol Gateways: MB3170/MB3270 firmware <=4.0, MB3280/MB3480 <=3.0, MB3660 <=2.2, and MB3180

8.8CVSS8.8AI score0.00206EPSS

CVE•added 2020/03/11 2:27 p.m.•49 views

CVE-2019-9095

CVE-2019-9095 affects Moxa MGate MB31xx/MB32xx/MB36xx/MB3180 gateways. The vulnerability arises from use of a broken or risky cryptographic algorithm that may allow an attacker to intercept weakly encrypted passwords and gain administrative access. Affected firmware versions include MB3170/MB3270...

9.8CVSS9.5AI score0.00155EPSS

CVE•added 2020/03/11 2:27 p.m.•49 views

CVE-2019-9098

CVE-2019-9098 affects Moxa MGate MB3170/MB3270 (firmware <4.1), MB3180 (<2.1), MB3280 (<3.1), MB3480 (<3.1), and MB3660 (

7.5CVSS7.7AI score0.01205EPSS

CVE•added 2020/03/11 2:27 p.m.•48 views

CVE-2019-9099

Summary: CVE-2019-9099 affects Moxa MGate MB3170/MB3270 (before 4.1), MB3280/MB3480 (before 3.1), MB3660 (before 2.3), and MB3180 (before 2.1) where a buffer overflow in the built‑in web server can cause a remote DoS and may allow arbitrary code execution . The root cause is a stack‑based overflo...

9.8CVSS9.9AI score0.09092EPSS

CVE•added 2020/03/11 2:27 p.m.•45 views

CVE-2019-9104

CVE-2019-9104 affects Moxa MGate MB3170/MB3270 (before 4.1), MB3180 (before 2.1), MB3280/MB3480 (before 3.1), and MB3660 (before 2.3). The issue is that the device configuration file stores passwords in cleartext, enabling potential information disclosure. The threat is elevated by network exposu...

9.8CVSS7.5AI score0.00177EPSS

CVE•added 2020/03/11 2:27 p.m.•44 views

CVE-2019-9096

CVE-2019-9096 affects Moxa MGate MB3170/MB3270 (firmware <=4.0), MB3180 (<=2.0), MB3280/MB3480 (<=3.0), MB3660 (

9.8CVSS9.6AI score0.0038EPSS

CVE•added 2020/03/11 2:27 p.m.•44 views

CVE-2019-9097

CVE-2019-9097 affects Moxa MB3xxx Protocol Gateways (MB3170/MB3270 before 4.1, MB3280/MB3480 before 3.1, MB3660 before 2.3, MB3180 before 2.1). The issue is an overload from high transit traffic that can exhaust memory and cause a denial of service. The Tenable OT plugin and CVE overview describe...

7.5CVSS5.3AI score0.00441EPSS

CVE•added 2020/03/11 2:27 p.m.•42 views

CVE-2019-9101

CVE-2019-9101 affects Moxa MGate MB3xxx Series Protocol Gateways (MB3170/MB3270 up to firmware 4.1, MB3280/MB3480 up to 3.1, MB3660 up to 2.3, MB3180 up to 2.1). The issue causes sensitive information to be transmitted to the web server in cleartext, which may allow an attacker observing traffic ...

8.8CVSS7.3AI score0.00127EPSS

CVE•added 2020/03/11 2:27 p.m.•41 views

CVE-2019-9103

CVE-2019-9103 affects Moxa MB3xxx Protocol Gateways (MB3170/MB3270 before 4.1, MB3280/MB3480 before 3.1, MB3660 before 2.3, MB3180 before 2.1). The vulnerability allows an unauthenticated attacker to access sensitive information via the built-in WEB service, enabling potential username disclosure...

5.3CVSS5.1AI score0.00393EPSS