Shodan
Vulnerabilities
Vulnerable Software
Moxa:  Security Vulnerabilities
CVE-2020-7007
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the attacker may execute arbitrary codes or target the device, causing it to go out of service.
CVSS Score
9.8
EPSS Score
0.027
Published
2020-03-24
CVE-2020-6979
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a hard-coded cryptographic key, increasing the possibility that confidential data can be recovered.
CVSS Score
7.5
EPSS Score
0.012
Published
2020-03-24
CVE-2020-6981
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, an attacker may gain access to the system without proper authentication.
CVSS Score
9.8
EPSS Score
0.02
Published
2020-03-24
CVE-2020-6993
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, an attacker can gain access to sensitive information from the web service without authorization.
CVSS Score
7.5
EPSS Score
0.013
Published
2020-03-24
CVE-2020-6995
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the application utilizes weak password requirements, which may allow an attacker to gain unauthorized access.
CVSS Score
9.8
EPSS Score
0.013
Published
2020-03-24
CVE-2020-6985
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, these devices use a hard-coded service code for access to the console.
CVSS Score
9.8
EPSS Score
0.016
Published
2020-03-24
CVE-2020-6983
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the affected products use a hard-coded cryptographic key, which increases the possibility that confidential data can be recovered.
CVSS Score
7.5
EPSS Score
0.012
Published
2020-03-24
CVE-2020-6987
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the affected products use a weak cryptographic algorithm, which may allow confidential information to be disclosed.
CVSS Score
7.5
EPSS Score
0.008
Published
2020-03-24
CVE-2020-6989
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, a buffer overflow in the web server allows remote attackers to cause a denial-of-service condition or execute arbitrary code.
CVSS Score
9.8
EPSS Score
0.028
Published
2020-03-24
CVE-2020-7003
In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, sensitive information is transmitted over some web applications in clear text.
CVSS Score
7.5
EPSS Score
0.008
Published
2020-03-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved