Vulnerabilities > Moxa > EDS 510A > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-03-05 CVE-2019-6524 Improper Restriction of Excessive Authentication Attempts vulnerability in Moxa products
Moxa IKS and EDS do not implement sufficient measures to prevent multiple failed authentication attempts, which may allow an attacker to discover passwords via brute force attack.
network
low complexity
moxa CWE-307
5.0
2019-03-05 CVE-2019-6520 Unspecified vulnerability in Moxa products
Moxa IKS and EDS does not properly check authority on server side, which results in a read-only user being able to perform arbitrary configuration changes.
network
low complexity
moxa
5.0
2019-03-05 CVE-2019-6518 Missing Encryption of Sensitive Data vulnerability in Moxa products
Moxa IKS and EDS store plaintext passwords, which may allow sensitive information to be read by someone with access to the device.
network
low complexity
moxa CWE-311
5.0