moxa mxview CVE 漏洞(13)

CVE 数: 13 CPE versions: View versions table

摘要

本页列出影响 moxa mxview 的已公开 CVE 漏洞(通过 NVD CPE 关联)。每行包含严重程度评分、摘要与发布日期,便于识别与分析安全问题。

显示 11313 CVE 数
«« 第一页 « 上一页 第 1 / 1 页 下一页 »
CVE 摘要 来源 最高 CVSS EPSS % 公开时间 更新时间
CVE-2021-40392 An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. Network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to exploit this vulnerability. [email protected] 7.5 0.57% 2022-04-14 2026-06-17
CVE-2021-40390 An authentication bypass vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. A specially-crafted HTTP request can lead to unauthorized access. An attacker can send an HTTP request to trigger this vulnerability. [email protected] 9.8 2.42% 2022-04-14 2026-06-17
CVE-2021-38460 A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries. [email protected] 7.5 1.70% 2021-10-12 2026-06-17
CVE-2021-38458 A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries. [email protected] 9.8 1.71% 2021-10-12 2026-06-17
CVE-2021-38456 A use of hard-coded password vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to gain access through accounts using default passwords [email protected] 9.8 1.11% 2021-10-12 2026-06-17
CVE-2021-38454 A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries. [email protected] 10.0 15.79% 2021-10-12 2026-06-17
CVE-2021-38452 A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries. [email protected] 7.5 1.55% 2021-10-12 2026-06-17
CVE-2020-13537 An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary.By default MXViewService, which starts as a NT SYSTEM authority user executes a series of Node.Js scripts to start additional application functionality and among them the mosquitto executable is also run. [email protected] 7.8 0.53% 2020-11-05 2026-06-16
CVE-2020-13536 An exploitable local privilege elevation vulnerability exists in the file system permissions of Moxa MXView series 3.1.8 installation. Depending on the vector chosen, an attacker can either add code to a script or replace a binary. By default MXViewService, which starts as a NT SYSTEM authority user executes a series of Node.Js scripts to start additional application functionality. [email protected] 7.8 0.54% 2020-11-05 2026-06-16
CVE-2018-7506 The private key of the web server in Moxa MXview versions 2.8 and prior is able to be read and accessed via an HTTP GET request, which may allow a remote attacker to decrypt encrypted information. [email protected] 7.5 1.97% 2018-04-06 2026-06-16
CVE-2017-14030 An issue was discovered in Moxa MXview v2.8 and prior. The unquoted service path escalation vulnerability could allow an authorized user with file access to escalate privileges by inserting arbitrary code into the unquoted service path. [email protected] 7.8 0.38% 2018-01-12 2026-06-16
CVE-2017-7456 Moxa MXView 2.8 allows remote attackers to cause a Denial of Service by sending overly long junk payload for the MXView client login credentials. [email protected] 7.5 29.29% 2017-04-14 2026-06-16
CVE-2017-7455 Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access control. [email protected] 7.5 16.34% 2017-04-14 2026-06-16
«« 第一页 « 上一页 第 1 / 1 页 下一页 »
cvelogic Threat Intelligence