Vulnerabilities > CVE-2016-4514 - Incorrect Authorization vulnerability in Moxa Pt-7728 and Pt-7728 Firmware

CVSS 7.7 - HIGH

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

LOW

Availability impact

LOW

network

high complexity

moxa

CWE-863

NVD

Published: 2016-06-19

Updated: 2024-11-21

Summary

Moxa PT-7728 devices with software 3.4 build 15081113 allow remote authenticated users to change the configuration via vectors involving a local proxy.

Vulnerable Configurations

Part	Description	Count
Hardware	Moxa Moxa PT 7728 -	1
OS	Moxa Moxa PT 7728 Firmware 3.4	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-168-01
https://ics-cert.us-cert.gov/advisories/ICSA-16-168-01