Improper Authentication Vulnerability in Moxa OnCell Series Products
CVE-2017-7915

9.8CRITICAL

Key Information:

Vendor: Moxa
Status: Moxa Oncell
Vendor: CVE Published:; 29 May 2017

Summary

An issue identified in Moxa OnCell series products allows attackers to exploit insufficient restrictions on authentication attempts. This vulnerability could enable unauthorized users to employ brute-force techniques to guess authentication parameters, potentially bypassing security measures and gaining access to sensitive devices. Those using affected versions should consider implementing additional security protocols to mitigate these risks.

Affected Version(s)

Moxa OnCell Moxa OnCell

References

https://ics-cert.us-cert.gov/advisories/ICSA-17-143-01

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 29, 2017
Vulnerability Reserved
Apr 18, 2017