CVE-2023-39981

A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker.
Configurations

Configuration 1 (hide)

cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:16

Type Values Removed Values Added
References () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory

28 Oct 2024, 06:15

Type Values Removed Values Added
CWE CWE-306
Summary (en) A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker. (en) A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker.

07 Sep 2023, 20:38

Type Values Removed Values Added
References (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory
CPE cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*
CWE CWE-287
First Time Moxa
Moxa mxsecurity
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5

02 Sep 2023, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-02 13:15

Updated : 2024-11-21 08:16


NVD link : CVE-2023-39981

Mitre link : CVE-2023-39981

CVE.ORG link : CVE-2023-39981


JSON object : View

Products Affected

moxa

  • mxsecurity
CWE
CWE-306

Missing Authentication for Critical Function

CWE-287

Improper Authentication