CVE-2016-5812

3.3LOW

Key Information:

Vendor: Moxa
Status: Oncell G3001 Firmware
Vendor: CVE Published:; 24 August 2016

Summary

Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 use cleartext password storage, which makes it easier for local users to obtain sensitive information by reading a configuration file.

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-236-01

x_refsource_MISC

http://www.securityfocus.com/bid/92605

vdb-entryx_refsource_BID

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 24, 2016
Vulnerability Reserved
Jun 23, 2016