CVE-2023-39983

A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the nsm-web UI has been identified in MXsecurity versions prior to v1.0.1. This vulnerability might allow an unauthenticated remote attacker to register or add devices via the nsm-web application.
Configurations

Configuration 1 (hide)

cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*

History

21 Nov 2024, 08:16

Type Values Removed Values Added
References () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory

08 Sep 2023, 14:22

Type Values Removed Values Added
First Time Moxa
Moxa mxsecurity
References (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory
CWE CWE-913
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.3
CPE cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*

02 Sep 2023, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-02 13:15

Updated : 2024-11-21 08:16


NVD link : CVE-2023-39983

Mitre link : CVE-2023-39983

CVE.ORG link : CVE-2023-39983


JSON object : View

Products Affected

moxa

  • mxsecurity
CWE
CWE-915

Improperly Controlled Modification of Dynamically-Determined Object Attributes

CWE-913

Improper Control of Dynamically-Managed Code Resources