CVE-2021-38460

A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.
References
Link Resource
https://us-cert.cisa.gov/ics/advisories/icsa-21-278-03 Third Party Advisory US Government Resource
https://us-cert.cisa.gov/ics/advisories/icsa-21-278-03 Third Party Advisory US Government Resource
Configurations

Configuration 1 (hide)

cpe:2.3:a:moxa:mxview:*:*:*:*:*:*:*:*

History

21 Nov 2024, 06:17

Type Values Removed Values Added
References () https://us-cert.cisa.gov/ics/advisories/icsa-21-278-03 - Third Party Advisory, US Government Resource () https://us-cert.cisa.gov/ics/advisories/icsa-21-278-03 - Third Party Advisory, US Government Resource

Information

Published : 2021-10-12 14:15

Updated : 2024-11-21 06:17


NVD link : CVE-2021-38460

Mitre link : CVE-2021-38460

CVE.ORG link : CVE-2021-38460


JSON object : View

Products Affected

moxa

  • mxview
CWE
CWE-523

Unprotected Transport of Credentials

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')