Mxview Security Vulnerabilities and Issues — Mxview CVE List

Lucene search

MoxaMxview

13 matches found

CVE•added 2022/04/14 8:15 p.m.•66 views

CVE-2021-40392

An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. Network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to exploit this vulnerability.

7.5CVSS7.1AI score0.0014EPSS

CVE•added 2022/04/14 8:15 p.m.•65 views

CVE-2021-40390

An authentication bypass vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. A specially-crafted HTTP request can lead to unauthorized access. An attacker can send an HTTP request to trigger this vulnerability.

10CVSS9.5AI score0.00311EPSS

CVE•added 2020/11/05 9:15 p.m.•53 views

CVE-2020-13537

An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary.By default MXViewService, which starts as a NT SYSTEM authority user...

9.3CVSS7.5AI score0.00032EPSS

CVE•added 2018/01/12 8:29 p.m.•52 views

CVE-2017-14030

An issue was discovered in Moxa MXview v2.8 and prior. The unquoted service path escalation vulnerability could allow an authorized user with file access to escalate privileges by inserting arbitrary code into the unquoted service path.

7.8CVSS8.5AI score0.00096EPSS

CVE•added 2017/04/14 2:59 p.m.•52 views

CVE-2017-7455

Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access control.

7.5CVSS7.3AI score0.39989EPSS

CVE•added 2017/04/14 2:59 p.m.•52 views

CVE-2017-7456

Moxa MXView 2.8 allows remote attackers to cause a Denial of Service by sending overly long junk payload for the MXView client login credentials.

7.5CVSS7.3AI score0.28879EPSS

CVE•added 2020/11/05 9:15 p.m.•51 views

CVE-2020-13536

An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary. By default MXViewService, which starts as a NT SYSTEM authority use...

9.3CVSS7.5AI score0.00032EPSS

CVE•added 2021/10/12 2:15 p.m.•47 views

CVE-2021-38452

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.

9.1CVSS8.6AI score0.00603EPSS

CVE•added 2021/10/12 2:15 p.m.•42 views

CVE-2021-38458

9.8CVSS9.6AI score0.00821EPSS

CVE•added 2021/10/12 2:15 p.m.•40 views

CVE-2021-38456

A use of hard-coded password vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to gain access through accounts using default passwords

9.8CVSS9.7AI score0.00222EPSS

CVE•added 2018/04/06 2:29 p.m.•39 views

CVE-2018-7506

The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information.

7.5CVSS7.3AI score0.01137EPSS

CVE•added 2021/10/12 2:15 p.m.•39 views

CVE-2021-38454

10CVSS9.6AI score0.00564EPSS

CVE•added 2021/10/12 2:15 p.m.•38 views

CVE-2021-38460

7.5CVSS7.8AI score0.00636EPSS