Vulnerability Details CVE-2019-6522
Moxa IKS and EDS fails to properly check array bounds which may allow an attacker to read device memory on arbitrary addresses, and may allow an attacker to retrieve sensitive data or cause device reboot.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.0%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 8.5
References
Products affected by CVE-2019-6522
-
cpe:2.3:h:moxa:eds-405a:-
-
cpe:2.3:h:moxa:eds-408a:-
-
cpe:2.3:h:moxa:eds-510a:-
-
cpe:2.3:h:moxa:iks-g6824a:-
-
cpe:2.3:o:moxa:eds-405a_firmware:3.8
-
cpe:2.3:o:moxa:eds-408a_firmware:3.8
-
cpe:2.3:o:moxa:eds-510a_firmware:3.8
-
cpe:2.3:o:moxa:iks-g6824a_firmware:4.5