moxa

320 tracked vulnerabilities.

CVE-2024-7695 HIGH
Multiple Switches - Buffer Overflow
Jan 29, 2025
CVSS 7.5
EPSS 0.01
CVE-2024-12297 CRITICAL
Moxa's Ethernet switch - Auth Bypass
Jan 15, 2025
EPSS 0.01
CVE-2024-9140 CRITICAL
Moxa TN-4900 Series < 3.13 - OS Command Injection
Jan 03, 2025
CVSS 9.8
EPSS 0.02
CVE-2024-9138 HIGH
Moxa EDR-810 Series < 5.12.37 - Authenticated Privilege Escalation via Hard-coded Credentials
Jan 03, 2025
CVSS 7.2
EPSS 0.01
CVE-2024-9404 HIGH
Moxa VPort 07-3 Series < 1.0 and EDS Series < 3.12 - Denial of Service via moxa_cmd Service
Dec 04, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-4740 MEDIUM
MXsecurity < 1.1.0 - Use of Hard-coded Credentials
Oct 18, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-4739 MEDIUM
MXsecurity <v1.1.0 - Info Disclosure
Oct 18, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-9139 HIGH
Product <Version - Command Injection
Oct 14, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-9137 CRITICAL
Moxa EDR-8010 Series < 3.12.1 - Unauthenticated Missing Authentication for Critical Function
Oct 14, 2024
CVSS 9.4
EPSS 0.01
CVE-2024-6787 MEDIUM
Moxa MXview One < 1.4.1 - Arbitrary File Write via TOCTOU Race Condition
Sep 21, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-6786 MEDIUM
Moxa MXview One < 1.4.1 - Path Traversal via MQTT Message
Sep 21, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-6785 MEDIUM
Configuration File - Info Disclosure
Sep 21, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-4641 MEDIUM
Moxa OnCell G3470A-LTE Series Firmware < 1.7.7 - Denial of Service via Format String Injection
Jun 25, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-4640 HIGH
Moxa OnCell G3470A-LTE Series Firmware < 1.7.7 - Buffer Overflow via Missing Bounds Check
Jun 25, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-4639 HIGH
Moxa OnCell G3470A-LTE Series Firmware < 1.7.7 - OS Command Injection via IPSec Configuration
Jun 25, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-4638 HIGH
Moxa OnCell G3470A-LTE Series Firmware < 1.7.7 - OS Command Injection via Web Key Upload Function
Jun 25, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-3576 HIGH
Moxa NPort 5100A Series < 1.6 - Stored Cross-Site Scripting
May 06, 2024
CVSS 8.3
EPSS 0.00
CVE-2024-1220 HIGH
Moxa NPort W2150A/W2250A Series Firmware < 2.3 - Denial of Service via Web Server Stack-Based Buffer Overflow
Mar 06, 2024
CVSS 8.2
EPSS 0.01
CVE-2024-0387 MEDIUM
Moxa EDS-4000/G4000 < 3.2 - IP Forwarding Access Control Bypass
Feb 26, 2024
CVSS 6.5
EPSS 0.01
CVE-2023-6094 MEDIUM
OnCell G3150A-LTE Series <1.3 - Info Disclosure
Dec 31, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-6093 MEDIUM
OnCell G3150A-LTE Series <1.3 - XSS
Dec 31, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-5962 MEDIUM
Moxa ioLogik E1200 Series Firmware < 3.3 - Use of a Broken or Risky Cryptographic Algorithm
Dec 23, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-5961 HIGH
Moxa ioLogik E1200 Series Firmware < 3.3 - Cross-Site Request Forgery
Dec 23, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-5035 LOW
Moxa EDS-G503 Firmware < 5.2 - Cleartext Transmission of Sensitive Information via Unsecured Cookie Attribute
Nov 02, 2023
CVSS 3.1
EPSS 0.00
CVE-2023-4217 LOW
PT-G503 Series <5.2 - Info Disclosure
Nov 02, 2023
CVSS 3.1
EPSS 0.00