CVE-2016-5799

9.8CRITICAL

Key Information:

Vendor: Moxa
Status: Oncell G3001 Firmware
Vendor: CVE Published:; 24 August 2016

Summary

Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 do not properly restrict authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-236-01

x_refsource_MISC

http://www.securityfocus.com/bid/92606

vdb-entryx_refsource_BID

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 24, 2016
Vulnerability Reserved
Jun 23, 2016