Vulnerabilities > Moxa > Mxview > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-04-14 | CVE-2021-40392 | Cleartext Transmission of Sensitive Information vulnerability in Moxa Mxview 3.2.4 An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. | 7.5 |
2021-10-12 | CVE-2021-38460 | Path Traversal vulnerability in Moxa Mxview A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries. | 7.5 |
2020-11-05 | CVE-2020-13537 | Incorrect Default Permissions vulnerability in Moxa Mxview 3.1.8 An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. | 7.8 |
2020-11-05 | CVE-2020-13536 | Incorrect Default Permissions vulnerability in Moxa Mxview 3.1.8 An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. | 7.8 |
2018-04-06 | CVE-2018-7506 | Information Exposure vulnerability in Moxa Mxview The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information. | 7.5 |
2018-01-12 | CVE-2017-14030 | Unquoted Search Path or Element vulnerability in Moxa Mxview An issue was discovered in Moxa MXview v2.8 and prior. | 7.8 |
2017-04-14 | CVE-2017-7456 | Improper Input Validation vulnerability in Moxa Mxview 2.8 Moxa MXView 2.8 allows remote attackers to cause a Denial of Service by sending overly long junk payload for the MXView client login credentials. | 7.5 |
2017-04-14 | CVE-2017-7455 | Information Exposure vulnerability in Moxa Mxview 2.8 Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access control. | 7.5 |