Vulnerabilities > Moxa > High

DATE CVE VULNERABILITY TITLE RISK
2018-05-14 CVE-2017-12120 OS Command Injection vulnerability in Moxa Edr-810 Firmware 4.1
An exploitable command injection vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317.
network
low complexity
moxa CWE-78
8.8
8.8
2018-04-06 CVE-2018-7506 Information Exposure vulnerability in Moxa Mxview
The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information.
network
low complexity
moxa CWE-200
7.5
7.5
2018-03-05 CVE-2018-5453 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Moxa products
An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior.
network
low complexity
moxa CWE-119
7.5
7.5
2018-01-18 CVE-2017-5170 Uncontrolled Search Path Element vulnerability in Moxa Softnvr-Ia Live View
An Uncontrolled Search Path Element issue was discovered in Moxa SoftNVR-IA Live Viewer, Version 3.30.3122 and prior versions.
network
low complexity
moxa CWE-427
7.2
7.2
2018-01-12 CVE-2017-14030 Unquoted Search Path or Element vulnerability in Moxa Mxview
An issue was discovered in Moxa MXview v2.8 and prior.
local
low complexity
moxa CWE-428
7.8
7.8
2017-11-23 CVE-2017-13699 Inadequate Encryption Strength vulnerability in Moxa Eds-G512E Firmware 5.1
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices.
network
low complexity
moxa CWE-326
7.5
7.5
2017-11-23 CVE-2017-13698 Unspecified vulnerability in Moxa Eds-G512E Firmware 5.1
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices.
network
low complexity
moxa
7.5
7.5
2017-11-17 CVE-2017-13703 Improper Input Validation vulnerability in Moxa Eds-G512E Firmware 5.1
An issue was discovered on MOXA EDS-G512E 5.1 build 16072215 devices.
network
low complexity
moxa CWE-20
7.5
7.5
2017-11-16 CVE-2017-16719 Injection vulnerability in Moxa products
An Injection issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior.
network
low complexity
moxa CWE-74
7.5
7.5
2017-11-16 CVE-2017-16715 Information Exposure vulnerability in Moxa products
An Information Exposure issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior.
network
low complexity
moxa CWE-200
7.5
7.5