Moxa Vulnerabilidad

Cronología

Escribe

Producto

Moxa AWK-3131A26
Moxa EDR-81021
Moxa AWK-312113
Moxa TN-590012
Moxa MGate MB328012

Contramedidas

Official Fix72
Temporary Fix0
Workaround23
Unavailable0
Not Defined180

Explotabilidad

High3
Functional0
Proof-of-Concept9
Unproven0
Not Defined263

Vector de acceso

Not Defined0
Physical1
Local15
Adjacent14
Network245

Autenticación

Not Defined0
High10
Low66
None199

La interacción del usuario

Not Defined0
Required44
None231

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤424
≤514
≤640
≤775
≤861
≤946
≤1015

CVSSv3 Temp

≤10
≤20
≤30
≤424
≤520
≤637
≤776
≤861
≤942
≤1015

VulDB

≤10
≤20
≤34
≤437
≤532
≤676
≤735
≤860
≤918
≤1013

NVD

≤10
≤20
≤30
≤42
≤56
≤618
≤717
≤869
≤947
≤1048

CNA

≤10
≤20
≤30
≤45
≤55
≤616
≤74
≤823
≤914
≤1011

Proveedor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explotar día 0

<1k47
<2k151
<5k77
<10k0
<25k0
<50k0
<100k0
≥100k0

Explotar hoy

<1k247
<2k24
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (149): 5232-N (1), AIG-300 (1), AWK-3121 (13), AWK-3131A (26), Active OPC Server (1), ActiveX SDK (1), Camera VPort 06EC-2V (5), DA-662C-16-LX (1), DACenter (2), DS-3008 (6), Device Management (5), EDR-810 (21), EDR-G902 (2), EDR-G903 (9), EDR 810 (2), EDR G902 (1), EDR G903 (1), EDS (9), EDS-405A (4), EDS-408A (4), EDS-510A (1), EDS-4008 (1), EDS-4009 (1), EDS-4012 (1), EDS-4014 (1), EDS-G508E (1), EDS-G512E (7), EDS-G516E (8), EDS-G4008 (1), EDS-G4012 (1), EDS-G4014 (1), G3100V2 (1), IAW5000A (1), IKS (9), IKS-G6824A (1), IOxpress Configuration Utility (2), Ioxpress Configuration Utility (1), MDM Tool (1), MGate 5101-PBM-MN (1), MGate 5105-MB-EIP (1), MGate 5109 (1), MGate MB3170 (11), MGate MB3180 (11), MGate MB3270 (11), MGate MB3280 (12), MGate MB3480 (11), MGate MB3660 (9), MX-AOPC Server (1), MXView (8), MXsecurity (7), MXview Network Management (5), Mgate MB3180 (2), MiiNePort (5), MiiNePort E1 (1), NPort (7), NPort 5000 (1), NPort 5110 (5), NPort 5130 (2), NPort 5150 (2), NPort 5150A (1), NPort 5210 (1), NPort 5230 (1), NPort 5232 (1), NPort 6000 (1), NPort IA5000A (3), NPort IA5150A (1), NPort IA5150A-IEX (1), NPort IA5150A-T (1), NPort IA5150A-T-IEX (1), NPort IA5150AI (1), NPort IA5150AI-IEX (1), NPort IA5150AI-T (1), NPort IA5150AI-T-IE (1), NPort IA5250A (1), NPort IA5250A-IEX (1), NPort IA5250A-T (1), NPort IA5250A-T-IEX (1), NPort IA5250AI (1), NPort IA5250AI-IEX (1), NPort IA5250AI-T (1), NPort IA5250AI-T-IE (1), NPort IA5450A (1), NPort IA5450A-T (1), NPort IA5450AI (1), NPort IA5450AI-T (1), NPort IAW5000A (3), NPort IAW5000A-IO (7), NPort W2x50A (2), NPort W2150A (2), NPort W2250A (2), OnCell (4), OnCell 5004 (3), OnCell 5104 (3), OnCell Central Manager (2), OnCell G3100-HSPA (9), OnCell G3110 (3), OnCell G3111 (1), OnCell G3150 (3), OnCell G3150A-LTE (2), OnCell G3151 (1), OnCell G3211 (1), OnCell G3251 (1), OnCell G3470A-LTE (2), OnCell G3470A-LTE-EU (2), OnCell G3470A-LTE-EU-T (2), Oncell Gateway G3211 (1), PT-7528 (6), PT-7728 (1), PT-7828 (6), PT-G503 (2), SoftCMS (7), SoftCMS Live Viewer (1), SoftNVR-IA Live Viewer (1), TAP-323-EU-CT-T (2), TAP-323-JP-CT-T (2), TAP-323-US-CT-T (2), TN-4900 (5), TN-5900 (12), ThingsPro (2), ThingsPro IIoT Gateway (5), UC (1), UC-2100 (1), UC-2100-W (1), UC-3100 (1), UC-5100 (1), UC-7408 LX-Plus (1), UC-8100 (1), UC-8100-ME-T (1), UC-8100A-ME-T (2), UC-8200 (1), UC-8410A (1), UC-8540 (1), UC-8580 (1), VPort 461 (1), VPort ActiveX SDK (1), WAC-1001 (2), WAC-1001-T (2), WAC-2004 (2), WDR-3124A-EU (2), WDR-3124A-EU-T (2), WDR-3124A-US (2), WDR-3124A-US-T (2), ioAdmin Configuration Utility (2), ioLogik (4), ioLogik 2500 (2), ioLogik 2542-HSPA (1), ioLogik 4000 (4), ioLogik E1200 (2), ioLogik E2200 (2)

Link to Vendor Website: https://www.moxa.com/

Fecha de publicaciónBaseTempVulnerabilidadProdExpConCTIEPSSCVE
2024-03-067.77.7Moxa NPort W2150A/NPort W2250A Built-In Web Server desbordamiento de búferAutomation SoftwareNot DefinedNot Defined0.040.00043CVE-2024-1220
2024-02-266.46.2Moxa EDS-G4014 Request escalada de privilegiosAutomation SoftwareNot DefinedOfficial Fix0.000.00043CVE-2024-0387
2023-12-314.84.8Moxa OnCell G3150A-LTE Frame Object escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.050.00046CVE-2023-6093
2023-12-314.54.5Moxa OnCell G3150A-LTE cifrado débilAutomation SoftwareNot DefinedNot Defined0.070.00046CVE-2023-6094
2023-12-235.45.4Moxa ioLogik E1200 cifrado débilAutomation SoftwareNot DefinedNot Defined0.000.00049CVE-2023-5962
2023-12-236.56.5Moxa ioLogik E1200 cross site request forgeryAutomation SoftwareNot DefinedNot Defined0.000.00058CVE-2023-5961
2023-11-023.83.8Moxa PT-G503 escalada de privilegiosAutomation SoftwareNot DefinedOfficial Fix0.000.00046CVE-2023-4217
2023-11-024.04.0Moxa PT-G503 divulgación de informaciónAutomation SoftwareNot DefinedOfficial Fix0.030.00046CVE-2023-5035
2023-11-016.46.4Moxa NPort 6000 autenticación débilAutomation SoftwareNot DefinedNot Defined0.040.00087CVE-2023-5627
2023-11-017.17.1Moxa EDR-810/EDR G902/EDR G903 URI Validator desbordamiento de búferAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-4452
2023-10-036.96.7Moxa NPort 5000 Firmware Update Privilege EscalationAutomation SoftwareNot DefinedOfficial Fix0.000.00050CVE-2023-4929
2023-09-026.26.2Moxa MXsecurity SSH Host Key autenticación débilAutomation SoftwareNot DefinedOfficial Fix0.000.00085CVE-2023-39982
2023-09-025.35.2Moxa MXsecurity nsm-web UI vulnerabilidad desconocidaAutomation SoftwareNot DefinedOfficial Fix0.030.00073CVE-2023-39983
2023-09-026.46.3Moxa MXsecurity autenticación débilAutomation SoftwareNot DefinedOfficial Fix0.000.00126CVE-2023-39981
2023-09-027.27.1Moxa MXsecurity sql injectionAutomation SoftwareNot DefinedOfficial Fix0.000.00070CVE-2023-39980
2023-09-029.89.6Moxa MXsecurity Remote Code ExecutionAutomation SoftwareNot DefinedOfficial Fix0.030.00141CVE-2023-39979
2023-08-245.35.3Moxa ioLogik 4000 divulgación de informaciónAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-4230
2023-08-243.73.7Moxa ioLogik 4000 escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-4228
2023-08-244.44.4Moxa ioLogik 4000 escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-4229
2023-08-245.75.7Moxa ioLogik 4000 escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-4227
2023-08-177.27.2Moxa TN-4900/TN-5900 escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-34217
2023-08-177.27.2Moxa TN-4900/TN-5900 directory traversalAutomation SoftwareNot DefinedNot Defined0.000.00046CVE-2023-34216
2023-08-179.19.1Moxa TN-4900/TN-5900 escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.000.00109CVE-2023-33239
2023-08-179.39.3Moxa TN-5900 Web API autenticación débilAutomation SoftwareNot DefinedNot Defined0.000.00050CVE-2023-33237
2023-08-177.27.2Moxa TN-5900 escalada de privilegiosAutomation SoftwareNot DefinedNot Defined0.000.00128CVE-2023-34215

250 no se muestran más entradas

Do you know our Splunk app?

Download it now for free!