CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-4503

Moxa Device Server Web Console 5232-N allows remote attackers to bypass authentication, and consequently modify settings and data, via vectors related to reading a cookie parameter containing a UserId value.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 82.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/91670
https://ics-cert.us-cert.gov/advisories/ICSA-16-189-02
http://www.securityfocus.com/bid/91670
https://ics-cert.us-cert.gov/advisories/ICSA-16-189-02

Products affected by CVE-2016-4503

Moxa » Device Server Web Console 5232-N » Version: N/A

cpe:2.3:h:moxa:device_server_web_console_5232-n:-
Moxa » Device Server Web Console 5232-N Firmware » Version: N/A

cpe:2.3:o:moxa:device_server_web_console_5232-n_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-4503

Products

Pricing

Contact Us