Buffer Overflow Vulnerability in Moxa SoftCMS by Moxa
CVE-2015-6458

8.8HIGH

Key Information:

Vendor: Moxa
Status: Softcms
Vendor: CVE Published:; 21 March 2019

What is CVE-2015-6458?

Moxa SoftCMS version 1.3 and earlier is prone to a buffer overflow vulnerability that may lead to system crashes or enable remote code execution. This flaw can be exploited by an attacker to inflict significant damage or gain unauthorized access to sensitive information. Moxa addressed this issue with the release of SoftCMS version 1.4 on June 1, 2015. Users of affected versions are strongly advised to update their software to mitigate risks.

Affected Version(s)

SoftCMS <= 1.3

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-239-01

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2019
Vulnerability Reserved
Aug 17, 2015