Vulnerabilities > Moxa
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-02 | CVE-2023-39980 | SQL Injection vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1. | 8.1 |
| 2023-09-02 | CVE-2023-39981 | Improper Authentication vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. | 7.5 |
| 2023-09-02 | CVE-2023-39982 | Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability has been identified in MXsecurity versions prior to v1.0.1. | 5.9 |
| 2023-09-02 | CVE-2023-39983 | Improper Control of Dynamically-Managed Code Resources vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the nsm-web UI has been identified in MXsecurity versions prior to v1.0.1. | 5.3 |
| 2023-08-24 | CVE-2023-4228 | Incorrect Permission Assignment for Critical Resource vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, where the session cookies attribute is not set properly in the affected application. | 4.3 |
| 2023-08-24 | CVE-2023-4229 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, potentially exposing users to security risks. | 4.7 |
| 2023-08-24 | CVE-2023-4230 | Exposure of Resource to Wrong Sphere vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, which has the potential to facilitate the collection of information on ioLogik 4000 Series devices. | 5.3 |
| 2023-08-24 | CVE-2023-4227 | Incorrect Authorization vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in the ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, which can be exploited by malicious actors to potentially gain unauthorized access to the product. | 6.5 |
| 2023-08-17 | CVE-2023-34215 | Command Injection vulnerability in Moxa Tn-5900 Firmware 3.1/3.2/3.3 TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. | 9.8 |
| 2023-08-17 | CVE-2023-34216 | Path Traversal vulnerability in Moxa Tn-4900 Firmware and Tn-5900 Firmware TN-4900 Series firmware versions v1.2.4 and prior and TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. | 8.1 |