| |
Vulnerability CVE-2016-0879
Published: 2016-05-30 Modified: 2016-05-31
| Description: |
Moxa Secure Router EDR-G903 devices before 3.4.12 do not delete copies of configuration and log files after completing the import function, which allows remote attackers to obtain sensitive information by requesting these files at an unspecified URL. |
CVSS2 => (AV:N/AC:L/Au:N/C:C/I:N/A:N)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
7.8/10 |
6.9/10 |
10/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
None |
None |
References: |
https://ics-cert.us-cert.gov/advisories/ICSA-16-042-01
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
