Cross-site request forgery (CSRF) vulnerability on Moxa MiiNePort_E1_4641 devices with firmware 1.1.10 Build 09120714, MiiNePort_E1_7080 devices with firmware 1.1.10 Build 09120714, MiiNePort_E2_1242 devices with firmware 1.1 Build 10080614, MiiNePort_E2_4561 devices with firmware 1.1 Build 10080614, and MiiNePort E3 devices with firmware 1.0 Build 11071409 allows remote attackers to hijack the authentication of arbitrary users.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2016/May/7 | |
https://ics-cert.us-cert.gov/advisories/ICSA-16-145-01 | Third Party Advisory US Government Resource |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: icscert
Published: 2016-05-31T01:00:00
Updated: 2016-11-28T20:57:01
Reserved: 2016-02-09T00:00:00
Link: CVE-2016-2285
JSON object: View
NVD Information
Status : Modified
Published: 2016-05-31T01:59:04.930
Modified: 2016-11-30T03:04:47.140
Link: CVE-2016-2285
JSON object: View
Redhat Information
No data.
CWE