Vulnerabilities > Moxa > IKS G6824A Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-03-05 CVE-2019-6565 Cross-site Scripting vulnerability in Moxa products
Moxa IKS and EDS fails to properly validate user input, giving unauthenticated and authenticated attackers the ability to perform XSS attacks, which may be used to send a malicious script.
network
low complexity
moxa CWE-79
6.1
2019-03-05 CVE-2019-6559 Resource Exhaustion vulnerability in Moxa products
Moxa IKS and EDS allow remote authenticated users to cause a denial of service via a specially crafted packet, which may cause the switch to crash.
network
low complexity
moxa CWE-400
6.5