Multiple product vulnerabilities were identified in Moxa’s E1/E2/E3 Series Serial Device Server. In response to this, Moxa has developed related solutions to address these vulnerabilities.
The identified vulnerability types and potential impacts are shown below:
||Clear text storage of sensitive information
||Disclosure of sensitive information
||Cross-site request forgery
||Unverified HTTP requests may allow atacker to trick user into making unintentional request
||Weak credential management
||Authentication bypass for administration