Vulnerabilities > Moxa > Mxsecurity

DATE CVE VULNERABILITY TITLE RISK
2024-10-18 CVE-2024-4739 Unspecified vulnerability in Moxa Mxsecurity 1.0/1.0.1/1.1.0
The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable.
network
low complexity
moxa
7.5
7.5
2024-10-18 CVE-2024-4740 Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0/1.0.1
MXsecurity software versions v1.1.0 and prior are vulnerable because of the use of hard-coded credentials.
network
low complexity
moxa CWE-798
7.5
7.5
2023-09-02 CVE-2023-39979 Use of Insufficiently Random Values vulnerability in Moxa Mxsecurity 1.0/1.0.1/1.1.0
There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication.
network
low complexity
moxa CWE-330
critical
 9.8
9.8
2023-09-02 CVE-2023-39980 SQL Injection vulnerability in Moxa Mxsecurity 1.0/1.0.1
A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1.
network
low complexity
moxa CWE-89
8.1
8.1
2023-09-02 CVE-2023-39981 Improper Authentication vulnerability in Moxa Mxsecurity 1.0/1.0.1
A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1.
network
low complexity
moxa CWE-287
7.5
7.5
2023-09-02 CVE-2023-39982 Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0/1.0.1
A vulnerability has been identified in MXsecurity versions prior to v1.0.1.
network
high complexity
moxa CWE-798
5.9
5.9
2023-09-02 CVE-2023-39983 Improper Control of Dynamically-Managed Code Resources vulnerability in Moxa Mxsecurity 1.0/1.0.1
A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the nsm-web UI has been identified in MXsecurity versions prior to v1.0.1.
network
low complexity
moxa CWE-913
5.3
5.3
2023-05-22 CVE-2023-33236 Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0
MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability.
network
low complexity
moxa CWE-798
critical
 9.8
9.8
2023-05-22 CVE-2023-33235 Command Injection vulnerability in Moxa Mxsecurity 1.0
MXsecurity version 1.0 is vulnearble to command injection vulnerability.
network
low complexity
moxa CWE-77
8.8
8.8