Vulnerability Details CVE-2019-6565
Moxa IKS and EDS fails to properly validate user input, giving unauthenticated and authenticated attackers the ability to perform XSS attacks, which may be used to send a malicious script.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.8%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2019-6565
-
cpe:2.3:h:moxa:eds-405a:-
-
cpe:2.3:h:moxa:eds-408a:-
-
cpe:2.3:h:moxa:eds-510a:-
-
cpe:2.3:h:moxa:iks-g6824a:-
-
cpe:2.3:o:moxa:eds-405a_firmware:3.8
-
cpe:2.3:o:moxa:eds-408a_firmware:3.8
-
cpe:2.3:o:moxa:eds-510a_firmware:3.8
-
cpe:2.3:o:moxa:iks-g6824a_firmware:4.5