TN-5900 Series User Enumeration Vulnerability
CVE-2023-3336

5.3MEDIUM

Key Information:

Vendor: Moxa
Status: Tn-5900 Series
Vendor: CVE Published:; 5 July 2023

What is CVE-2023-3336?

TN-5900 Series version 3.3 and prior versions is vulnearble to user enumeration vulnerability. The vulnerability may allow a remote attacker to determine whether a user is valid during password recovery through the web login page and enable a brute force attack with valid users.

Affected Version(s)

TN-5900 Series 1.0 <= 3.3

References

https://www.moxa.com/en/support/product-support/security-...

vendor-advisory

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 5, 2023
Vulnerability Reserved
Jun 20, 2023

Moxa

What is CVE-2023-3336?

Affected Version(s)

References

CVSS V3.1

Timeline