Password Restrictions Vulnerability in Moxa ioLogik Products
CVE-2016-8379

8.1HIGH

Key Information:

Vendor: Moxa
Status: Moxa Iologik E1200 Series Before 3.12
Vendor: CVE Published:; 13 February 2017

What is CVE-2016-8379?

Moxa ioLogik devices are susceptible to an issue that limits users to short passwords, which weakens overall security and exposes them to unauthorized access. Multiple models and their respective firmware versions are affected, making it critical for users to update to the latest firmware to mitigate these vulnerabilities and enhance the security of their systems.

Affected Version(s)

Moxa ioLogik E1200 Series before 3.12 Moxa ioLogik E1200 Series before 3.12

References

https://ics-cert.us-cert.gov/advisories/ICSA-16-287-05

x_refsource_MISC

http://www.securityfocus.com/bid/93550

vdb-entryx_refsource_BID

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 13, 2017
Vulnerability Reserved
Sep 28, 2016