Moxa Latest Vulnerabilities
October 18
Software Vulnerability Affects Sensitive Data
CVE-2024-4740
MoxaMxsecurity Series7.5HIGH
Unauthorized Access to Resource Due to Inadequate Restriction
CVE-2024-4739
MoxaMxsecurity Series7.5HIGH
October 14
Unauthorized Access to Configuration Files and System Compromise via Lack of Authentication Check
CVE-2024-9137
MoxaEdr-8010 Series9.4CRITICAL
Bug Bounty Platform Vulnerability Allows Arbitrary Code Execution
CVE-2024-9139
MoxaEdr-8010 Series7.2HIGH
September 21
Race Condition Vulnerability Could Lead to File Tampering and Code Execution
CVE-2024-6787
MoxaMxview One Series5.9MEDIUM
Vulnerability in MQTT Allowes Arbitrary File Reading
CVE-2024-6786
MoxaMxview One Series6.5MEDIUM
Sensitive Information Exposure Risk Due to Cleartext Credentials Storage
CVE-2024-6785
MoxaMxview One Series7.1HIGH
June 25
OnCell G3470A-LTE Series Firmware Vulnerability
CVE-2024-4641
MoxaOncell G3150a-lte Series9.8CRITICAL
Buffer Overflow Vulnerability Affects OnCell G3470A-LTE Series Firmware
CVE-2024-4640
MoxaOncell G3150a-lte Series8.2HIGH
Unauthorized Command Execution Vulnerability in OnCell G3470A-LTE Series Firmware
CVE-2024-4639
MoxaOncell G3150a-lte Series8.8HIGH
OnCell G3470A-LTE Series Firmware Vulnerability
CVE-2024-4638
MoxaOncell G3470a-lte Series8.8HIGH
May 6
NPort 5100A Series Affected by Web Server XSS Vulnerability
CVE-2024-3576
MoxaNport 5100a Series8.3HIGH
March 6
Buffer Overflow Vulnerability in Moxa NPort W2150A/W2250A Series Firmware
CVE-2024-1220
MoxaNport W2150a/w2250a Se...8.2HIGH
February 26
Vulnerability in IP Forwarding Capabilities Could Allow Attacker to Bypass Access Controls or Hide Source of Malicious Requests
CVE-2024-0387
MoxaEds-4008 Series6.5MEDIUM
December 31
OnCell G3150A-LTE Series: Web Server Transmits Cleartext Credentials
CVE-2023-6094
MoxaOncell G3150a-lte Series5.3MEDIUM
OnCell G3150A-LTE Series: Clickjacking Vulnerability
CVE-2023-6093
MoxaOnCell G3150A-LTE Series5.3MEDIUM
December 23
ioLogik E1200 Series Firmware Vulnerable to CSRF Attacks
CVE-2023-5961
MoxaioLogik E1200 Series👾8.8HIGH
ioLogik E1200 Series: Weak Cryptographic Algorithm Vulnerability
CVE-2023-5962
MoxaIologik E1200 Series6.5MEDIUM
November 2
Cookie Without Secure Flag
CVE-2023-5035
MoxaPt-g503 Series3.1LOW
Session cookies attribute not set properly
CVE-2023-4217
MoxaPt-g503 Series3.1LOW
November 1
Incorrect Implementation of Authentication Algorithm Vulnerability
CVE-2023-5627
MoxaNPort 6000 Series7.5HIGH
Web Server Buffer Overflow Vulnerability
CVE-2023-4452
MoxaEdr-810 Series6.5MEDIUM
October 3
NPort 5000 Series Firmware Improper Validation of Integrity Check Vulnerability
CVE-2023-4929
MoxaNport 5000ai-m12 Series6.5MEDIUM
September 2
MXsecurity Device Information Disclosure
CVE-2023-39981
MoxaMxsecurity Series7.5HIGH
MXsecurity Authenticated Information Disclosure Due to SQL Injection
CVE-2023-39980
MoxaMxsecurity Series7.1HIGH
MXsecurity Register Database Pollution
CVE-2023-39983
MoxaMxsecurity Series5.3MEDIUM
MXsecurity Hardcoded Credential
CVE-2023-39982
MoxaMxsecurity Series5.9MEDIUM
MXsecurity Authentication Bypass
CVE-2023-39979
MoxaMxsecurity Series9.8CRITICAL
August 24
ioLogik 4000 Series: Server Banner Information Disclosure
CVE-2023-4230
MoxaIologik 4000 Series5.3MEDIUM
ioLogik 4000 Series: Session Headers Not Implemented
CVE-2023-4229
MoxaIologik 4000 Series4.3MEDIUM
ioLogik 4000 Series: Session Cookies Attribute Not Set Properly
CVE-2023-4228
MoxaIologik 4000 Series3.1LOW
ioLogik 4000 Series: Existence of an Unauthorized Service
CVE-2023-4227
MoxaIologik 4000 Series6.5MEDIUM
August 17
Second Order Command-injection Vulnerability in the Certificate-generation Function
CVE-2023-34215
MoxaTn-5900 Series9.8CRITICAL
Second Order Command-injection Vulnerability in the Certificate-delete Function
CVE-2023-34217
MoxaTn-5900 Series8.1HIGH
Second Order Command-injection Vulnerability in the Key-delete Function
CVE-2023-34216
MoxaTn-5900 Series8.1HIGH
Second Order Command-injection Vulnerability in the Key-generation Function
CVE-2023-34213
MoxaTn-5900 Series9.8CRITICAL
Second Order Command-injection Vulnerability in the Certificate-generation Function
CVE-2023-34214
MoxaTn-5900 Series9.8CRITICAL
Command-injection Vulnerability in Certificate Management
CVE-2023-33238
MoxaTn-5900 Series9.8CRITICAL
Second Order Command-injection Vulnerability in the Key-generation Function
CVE-2023-33239
MoxaTn-5900 Series9.8CRITICAL
Authentication Bypass Without Administrator Privilege
CVE-2023-33237
MoxaTn-5900 Series8.8HIGH
August 16
NPort IAW5000A-I/O Series Hardcoded Credential Vulnerability
CVE-2023-4204
MoxaNport Iaw5000a-i/o Series5.4MEDIUM
July 5
TN-5900 Series User Enumeration Vulnerability
CVE-2023-3336
MoxaTn-5900 Series5.3MEDIUM
May 22
MXsecurity Hardcoded Credential Vulnerability
CVE-2023-33236
MoxaMXsecurity Series9.8CRITICAL
MXsecurity Command Injection Vulnerability
CVE-2023-33235
MoxaMXsecurity Series8.8HIGH
April 27
Moxa MiiNePort E1 - Broken Access Control
CVE-2023-28697
MoxaMiiNePort E19.8CRITICAL
March 7
CVE-2023-1257
CVE-2023-1257
MOXAUC-8580 Series6.8MEDIUM
February 7
CVE-2022-40693
MoxaSds-3008 Series Indust...5.9MEDIUM
CVE-2022-40224
MoxaSds-3008 Series Indust...5.3MEDIUM
CVE-2022-41313
MoxaSds-3008 Series Indust...4.3MEDIUM
CVE-2022-41312
MoxaSds-3008 Series Indust...4.3MEDIUM
CVE-2022-41311
MoxaSds-3008 Series Indust...4.3MEDIUM
CVE-2022-40691
MoxaSds-3008 Series Indust...5.3MEDIUM
November 28
CVE-2022-3088
MoxaUc-8100a-me-t System I...7.8HIGH
August 31
MOXA NPort 5110 Out-of-bounds Write
CVE-2022-2043
MoxaMoxa7.5HIGH
MOXA NPort 5110 Out-of-bounds Write
CVE-2022-2044
MoxaMoxa8.2HIGH
April 15
CVE-2022-27048
MoxaMgate Mb3170i Firmware7.4HIGH
April 14
CVE-2021-40392
MoxaMxview Series5.3MEDIUM
CVE-2021-40390
MoxaMxview Series10CRITICAL
April 1
Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation
CVE-2021-32974
MoxaNport Iaw5000a-i/o Ser...9.8CRITICAL
Moxa NPort IAW5000A-I/O Series Serial Device Server Stack-based Buffer Overflow
CVE-2021-32976
MoxaNport Iaw5000a-i/o Ser...9.8CRITICAL
Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation
CVE-2021-32970
MoxaNport Iaw5000a-i/o Ser...7.5HIGH
Moxa NPort IAW5000A-I/O Series Serial Device Server Classic Buffer Overflow
CVE-2021-32968
MoxaNport Iaw5000a-i/o Ser...7.5HIGH
February 18
CVE-2021-46082
MoxaTn-5916-wv-t Firmware7.5HIGH
January 26
CVE-2021-46559
MoxaTn-5900 Firmware7.5HIGH
CVE-2021-46560
MoxaTn-5900 Firmware9.8CRITICAL
December 27
ICSA-21-357-01 Moxa MGate Protocol Gateways
CVE-2021-4161
MoxaMgate Mb3180 Series9.8CRITICAL
October 12
Moxa MXview Network Management Software
CVE-2021-38452
MoxaMxview Network Managem...7.5HIGH
Moxa MXview Network Management Software
CVE-2021-38458
MoxaMxview Network Managem...9.8CRITICAL
Moxa MXview Network Management Software
CVE-2021-38456
MoxaMxview Network Managem...9.8CRITICAL
Moxa MXview Network Management Software
CVE-2021-38454
MoxaMxview Network Managem...10CRITICAL
Moxa MXview Network Management Software
CVE-2021-38460
MoxaMxview Network Managem...7.5HIGH
September 7
CVE-2021-39279
MoxaWac-2004 Firmware8.8HIGH
CVE-2021-39278
MoxaWac-2004 Firmware6.1MEDIUM
June 18
CVE-2021-33824
MoxaMgate Mb3180 Firmware7.5HIGH
CVE-2021-33823
MoxaMgate Mb3180 Firmware7.5HIGH
May 14
CVE-2020-27185
MoxaNport Ia5000a Series W...7.5HIGH
CVE-2020-27184
MoxaNport Ia5000a Series W...5.9MEDIUM
CVE-2020-27150
MoxaNport Ia5000a Series7.5HIGH
CVE-2020-27149
MoxaNport Ia5000a Series W...6.5MEDIUM
May 10
CVE-2021-25849
MoxaVport 06ec-2v26m Firmware7.5HIGH
CVE-2021-25846
MoxaVport 06ec-2v26m Firmware7.5HIGH
CVE-2021-25845
MoxaVport 06ec-2v26m Firmware7.5HIGH
CVE-2021-25847
MoxaVport 06ec-2v26m Firmware9.1CRITICAL
CVE-2021-25848
MoxaVport 06ec-2v26m Firmware9.1CRITICAL
February 3
CVE-2020-28144
MoxaEdr-g903 Firmware9.8CRITICAL
December 23
MOXA NPort IAW5000A-I/O Series
CVE-2020-25196
MoxaNport Iaw5000a-i/o9.8CRITICAL
MOXA NPort IAW5000A-I/O Series
CVE-2020-25194
MoxaNport Iaw5000a-i/o8.8HIGH
MOXA NPort IAW5000A-I/O Series
CVE-2020-25198
MoxaNport Iaw5000a-i/o8.8HIGH
MOXA NPort IAW5000A-I/O Series
CVE-2020-25192
MoxaNport Iaw5000a-i/o5.3MEDIUM
MOXA NPort IAW5000A-I/O Series
CVE-2020-25190
MoxaNport Iaw5000a-i/o7.5HIGH
MOXA NPort IAW5000A-I/O Series
CVE-2020-25153
MoxaNport Iaw5000a-i/o9.8CRITICAL
November 5
CVE-2020-13537
MoxaMoxa9.3CRITICAL
CVE-2020-13536
MoxaMoxa9.3CRITICAL
November 2
CVE-2020-23639
MoxaVport 461 Firmware9.8CRITICAL
July 15
CVE-2020-14511
MoxaEdr-g902 And Edr-g903 ...9.8CRITICAL
May 1
CVE-2020-12117
MoxaNport 5100a Firmware5.3MEDIUM
March 26
CVE-2020-6999
MoxaMoxa Eds-g516e Series ...6.5MEDIUM
March 24
CVE-2020-6997
MoxaMoxa Eds-g516e Series ...7.5HIGH
CVE-2020-6991
MoxaMoxa Eds-g516e Series ...9.8CRITICAL
CVE-2020-6981
MoxaMoxa Eds-g516e Series ...9.8CRITICAL