Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2017-02-13 CVE-2016-9361 Improper Authentication vulnerability in Moxa products
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4.
network
low complexity
moxa CWE-287
critical
 9.8
9.8
2017-02-13 CVE-2016-9360 Insufficiently Protected Credentials vulnerability in GE Cimplicity
An issue was discovered in General Electric (GE) Proficy HMI/SCADA iFIX Version 5.8 SIM 13 and prior versions, Proficy HMI/SCADA CIMPLICITY Version 9.0 and prior versions, and Proficy Historian Version 6.0 and prior versions.
local
high complexity
ge CWE-522
6.7
6.7
2017-02-13 CVE-2016-9357 Path Traversal vulnerability in Eaton products
An issue was discovered in certain legacy Eaton ePDUs -- the affected products are past end-of-life (EoL) and no longer supported: EAMxxx prior to June 30, 2015, EMAxxx prior to January 31, 2014, EAMAxx prior to January 31, 2014, EMAAxx prior to January 31, 2014, and ESWAxx prior to January 31, 2014.
network
low complexity
eaton CWE-22
5.3
5.3
2017-02-13 CVE-2016-9356 Improper Access Control vulnerability in Moxa Dacenter 1.4
An issue was discovered in Moxa DACenter Versions 1.4 and older.
local
low complexity
moxa CWE-284
7.8
7.8
2017-02-13 CVE-2016-9354 Resource Management Errors vulnerability in Moxa Dacenter 1.4
An issue was discovered in Moxa DACenter Versions 1.4 and older.
local
low complexity
moxa CWE-399
5.5
5.5
2017-02-13 CVE-2016-9353 Permissions, Privileges, and Access Controls vulnerability in Advantech Susiaccess 3.0
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior.
local
low complexity
advantech CWE-264
7.8
7.8
2017-02-13 CVE-2016-9351 Path Traversal vulnerability in Advantech Susiaccess 3.0
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior.
local
high complexity
advantech CWE-22
7.0
7.0
2017-02-13 CVE-2016-9349 Information Exposure vulnerability in Advantech Susiaccess 3.0
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior.
network
low complexity
advantech CWE-200
7.5
7.5
2017-02-13 CVE-2016-9348 Credentials Management vulnerability in Moxa products
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4.
local
low complexity
moxa CWE-255
3.3
3.3
2017-02-13 CVE-2016-9347 7PK - Security Features vulnerability in Emerson products
An issue was discovered in Emerson SE4801T0X Redundant Wireless I/O Card V13.3, and SE4801T1X Simplex Wireless I/O Card V13.3.
high complexity
emerson CWE-254
5.0
5.0