Moxa ioLogik E2200 devices before 3.12 and ioAdmin Configuration Utility before 3.18 do not properly encrypt credentials, which makes it easier for remote attackers to obtain the associated cleartext via unspecified vectors.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-16-063-01 | Third Party Advisory US Government Resource |
https://ics-cert.us-cert.gov/advisories/ICSA-16-063-01 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 02:48
Type | Values Removed | Values Added |
---|---|---|
References | () https://ics-cert.us-cert.gov/advisories/ICSA-16-063-01 - Third Party Advisory, US Government Resource |
Information
Published : 2016-03-04 15:59
Updated : 2024-11-21 02:48
NVD link : CVE-2016-2282
Mitre link : CVE-2016-2282
CVE.ORG link : CVE-2016-2282
JSON object : View
Products Affected
moxa
- ioadmin_firmware
- iologik_e2240
- iologik_e2242
- iologik_e2240-t
- iologik_e2212
- iologik_e2260-t
- iologik_e2212-t
- iologik_e2214-t
- iologik_e2242-t
- iologik_firmware
- iologik_e2260
- iologik_e2262-t
- iologik_e2262
- iologik_e2210-t
- iologik_e2214
- iologik_e2210
CWE
CWE-255
Credentials Management Errors