CVE-2023-39983

A vulnerability that poses a potential risk of polluting the MXsecurity sqlite database and the nsm-web UI has been identified in MXsecurity versions prior to v1.0.1. This vulnerability might allow an unauthenticated remote attacker to register or add devices via the nsm-web application.
Configurations

Configuration 1 (hide)

cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*

History

08 Sep 2023, 14:22

Type Values Removed Values Added
References (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mpsa-230403-mxsecurity-series-multiple-vulnerabilities - Patch, Vendor Advisory
First Time Moxa
Moxa mxsecurity
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.3
CWE CWE-913
CPE cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*

02 Sep 2023, 13:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-09-02 13:15

Updated : 2024-02-28 20:33


NVD link : CVE-2023-39983

Mitre link : CVE-2023-39983

CVE.ORG link : CVE-2023-39983


JSON object : View

Products Affected

moxa

  • mxsecurity
CWE
CWE-913

Improper Control of Dynamically-Managed Code Resources

CWE-915

Improperly Controlled Modification of Dynamically-Determined Object Attributes