Vulnerabilities > Moxa

DATE CVE VULNERABILITY TITLE RISK
2016-03-04 CVE-2016-2283 Credentials Management vulnerability in Moxa Ioadmin Firmware and Iologik Firmware
Moxa ioLogik E2200 devices before 3.12 and ioAdmin Configuration Utility before 3.18 do not properly encrypt data, which makes it easier for remote attackers to obtain the associated cleartext via unspecified vectors.
network
low complexity
moxa CWE-255
5.3
2016-03-04 CVE-2016-2282 Credentials Management vulnerability in Moxa Ioadmin Firmware and Iologik Firmware
Moxa ioLogik E2200 devices before 3.12 and ioAdmin Configuration Utility before 3.18 do not properly encrypt credentials, which makes it easier for remote attackers to obtain the associated cleartext via unspecified vectors.
network
low complexity
moxa CWE-255
5.3
2015-12-21 CVE-2015-6481 Unspecified vulnerability in Moxa Oncell Central Manager 2.0
The login function in the RequestController class in Moxa OnCell Central Manager before 2.2 has a hardcoded root password, which allows remote attackers to obtain administrative access via a login session.
network
low complexity
moxa
8.3
2015-12-21 CVE-2015-6480 Improper Authentication vulnerability in Moxa Oncell Central Manager 2.0
The MessageBrokerServlet servlet in Moxa OnCell Central Manager before 2.2 does not require authentication, which allows remote attackers to obtain administrative access via a command, as demonstrated by the addUserAndGroup action.
network
low complexity
moxa CWE-287
8.3