CVE-2023-5961

HIGH

Moxa ioLogik E1200 Series Firmware < 3.3 - Cross-Site Request Forgery

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2023-5961. PoCs published by HadessCS.

AI-analyzed exploit summary The repository contains a Python script that interacts with Moxa ioLogik E1212 devices to fetch relay information or download the configuration file /ik1212.txt, exploiting CVE-2023-5961. The script is designed to demonstrate unauthorized access to sensitive information.

Description

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in ioLogik E1200 Series firmware versions v3.3 and prior. An attacker can exploit this vulnerability to trick a client into making an unintentional request to the web server, which will be treated as an authentic request. This vulnerability may lead an attacker to perform operations on behalf of the victimized user.

Exploits (1)

nomisec WORKING POC 1 stars

by HadessCS · poc

https://github.com/HadessCS/CVE-2023-5961

View Code ZIP pw:eip

The repository contains a Python script that interacts with Moxa ioLogik E1212 devices to fetch relay information or download the configuration file /ik1212.txt, exploiting CVE-2023-5961. The script is designed to demonstrate unauthorized access to sensitive information.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Moxa ioLogik E1200 series web server

No auth needed

Prerequisites: Network access to the target device · Device must be running a vulnerable version of the Moxa ioLogik E1200 series web server

MITRE ATT&CK

T1083 - File and Directory Discovery T1005 - Data from Local System

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-235250-iologik-e1200-series-web-server-vulnerability

Scores

CVSS v3 8.8

EPSS 0.0037

EPSS Percentile 29.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-352

Status published

Products (10)

moxa/iologik_e1210_firmware < 3.3

moxa/iologik_e1211_firmware < 3.3

moxa/iologik_e1212_firmware < 3.3

moxa/iologik_e1213_firmware < 3.3

moxa/iologik_e1214_firmware < 3.3

moxa/iologik_e1240_firmware < 3.3

moxa/iologik_e1241_firmware < 3.3

moxa/iologik_e1242_firmware < 3.3

moxa/iologik_e1260_firmware < 3.3

moxa/iologik_e1262_firmware < 3.3

Published Dec 23, 2023

Tracked Since Feb 18, 2026