Multiple product vulnerabilities were identified in Moxa’s E1/E2/E3 Series Serial Device Server. In response to this, Moxa has developed related solutions to address these vulnerabilities.
The identified vulnerability types and potential impacts are shown below:
Item |
Vulnerability Type |
Impact |
1 |
Clear text storage of sensitive information |
Disclosure of sensitive information |
2 |
Cross-site request forgery |
Unverified HTTP requests may allow atacker to trick user into making unintentional request |
3 |
Weak credential management |
Authentication bypass for administration |