TN-5900 Series User Enumeration Vulnerability

CVE-2023-3336

5.3MEDIUM

Key Information

Vendor
Moxa
Status
Tn-5900 Series
Vendor
CVE Published:
5 July 2023

Summary

TN-5900 Series version 3.3 and prior versions is vulnearble to user enumeration vulnerability. The vulnerability may allow a remote attacker to determine whether a user is valid during password recovery through the web login page and enable a brute force attack with valid users.

Affected Version(s)

TN-5900 Series <= 3.3

Refferences

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.