Vulnerabilities > CVE-2019-10963 - Unspecified vulnerability in Moxa Edr-810 Firmware
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
NONE Availability impact
NONE Summary
Moxa EDR 810, all versions 5.1 and prior, allows an unauthenticated attacker to be able to retrieve some log files from the device, which may allow sensitive information disclosure. Log files must have previously been exported by a legitimate user.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 4 | |
Hardware | 1 |
Exploit-Db
id | EDB-ID:47536 |
last seen | 2019-10-22 |
modified | 2019-10-22 |
published | 2019-10-22 |
reporter | Exploit-DB |
source | https://www.exploit-db.com/download/47536 |
title | Moxa EDR-810 - Command Injection / Information Disclosure |
Packetstorm
data source | https://packetstormsecurity.com/files/download/154943/moxaedr810-injectdisclose.txt |
id | PACKETSTORM:154943 |
last seen | 2019-10-24 |
published | 2019-10-23 |
reporter | RandoriSec |
source | https://packetstormsecurity.com/files/154943/Moxa-EDR-810-Command-Injection-Information-Disclosure.html |
title | Moxa EDR-810 Command Injection / Information Disclosure |
References
- http://packetstormsecurity.com/files/154943/Moxa-EDR-810-Command-Injection-Information-Disclosure.html
- http://packetstormsecurity.com/files/154943/Moxa-EDR-810-Command-Injection-Information-Disclosure.html
- https://www.us-cert.gov/ics/advisories/icsa-19-274-03
- https://www.us-cert.gov/ics/advisories/icsa-19-274-03