Vulnerabilities > Moxa > Mxview

DATE CVE VULNERABILITY TITLE RISK
2022-04-14 CVE-2021-40390 Use of Hard-coded Credentials vulnerability in Moxa Mxview 3.2.4
An authentication bypass vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4.
network
low complexity
moxa CWE-798
critical
9.8
2022-04-14 CVE-2021-40392 Cleartext Transmission of Sensitive Information vulnerability in Moxa Mxview 3.2.4
An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4.
network
low complexity
moxa CWE-319
7.5
2021-10-12 CVE-2021-38452 Unspecified vulnerability in Moxa Mxview
A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.
network
low complexity
moxa
critical
9.1
2021-10-12 CVE-2021-38454 Path Traversal vulnerability in Moxa Mxview
A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.
network
low complexity
moxa CWE-22
critical
10.0
2021-10-12 CVE-2021-38456 Use of Hard-coded Credentials vulnerability in Moxa Mxview
A use of hard-coded password vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to gain access through accounts using default passwords
network
low complexity
moxa CWE-798
critical
9.8
2021-10-12 CVE-2021-38458 Injection vulnerability in Moxa Mxview
A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.
network
low complexity
moxa CWE-74
critical
9.8
2021-10-12 CVE-2021-38460 Path Traversal vulnerability in Moxa Mxview
A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.
network
low complexity
moxa CWE-22
7.5
2020-11-05 CVE-2020-13537 Incorrect Default Permissions vulnerability in Moxa Mxview 3.1.8
An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation.
local
low complexity
moxa CWE-276
7.8
2020-11-05 CVE-2020-13536 Incorrect Default Permissions vulnerability in Moxa Mxview 3.1.8
An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation.
local
low complexity
moxa CWE-276
7.8
2018-04-06 CVE-2018-7506 Information Exposure vulnerability in Moxa Mxview
The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information.
network
low complexity
moxa CWE-200
7.5