Vulnerabilities > Moxa
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-02 | CVE-2023-39979 | Use of Insufficiently Random Values vulnerability in Moxa Mxsecurity 1.0/1.0.1/1.1.0 There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication. | 9.8 |
| 2023-09-02 | CVE-2023-39980 | SQL Injection vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1. | 8.1 |
| 2023-09-02 | CVE-2023-39981 | Improper Authentication vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. | 7.5 |
| 2023-09-02 | CVE-2023-39982 | Use of Hard-coded Credentials vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability has been identified in MXsecurity versions prior to v1.0.1. | 5.9 |
| 2023-09-02 | CVE-2023-39983 | Improper Control of Dynamically-Managed Code Resources vulnerability in Moxa Mxsecurity 1.0/1.0.1 A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the nsm-web UI has been identified in MXsecurity versions prior to v1.0.1. | 5.3 |
| 2023-08-24 | CVE-2023-4228 | Incorrect Permission Assignment for Critical Resource vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, where the session cookies attribute is not set properly in the affected application. | 4.3 |
| 2023-08-24 | CVE-2023-4229 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, potentially exposing users to security risks. | 4.7 |
| 2023-08-24 | CVE-2023-4230 | Exposure of Resource to Wrong Sphere vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, which has the potential to facilitate the collection of information on ioLogik 4000 Series devices. | 5.3 |
| 2023-08-24 | CVE-2023-4227 | Incorrect Authorization vulnerability in Moxa Iologik E4200 Firmware 1.6 A vulnerability has been identified in the ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, which can be exploited by malicious actors to potentially gain unauthorized access to the product. | 6.5 |
| 2023-08-17 | CVE-2023-34215 | Command Injection vulnerability in Moxa Tn-5900 Firmware 3.1/3.2/3.3 TN-5900 Series firmware versions v3.3 and prior are vulnerable to the command-injection vulnerability. | 9.8 |