CVE-2016-0879

Loading...

General

Score:7.8/10.0
Severity:High
Category:Information Leak / Disclosure

Impact Metrics

Confidentiality:Complete
Integrity:None
Availability:None

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 31/05/16 - Updated on 02/06/16

Description

Moxa Secure Router EDR-G903 devices before 3.4.12 do not delete copies of configuration and log files after completing the import function, which allows remote attackers to obtain sensitive information by requesting these files at an unspecified URL.

Category: Information Leak / Disclosure

CWE-200 (Information Exposure)
An information exposure is the intentional or unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.

Security Notices

US National Vulnerability DatabaseCVE-2016-0879

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
moxaedr_g903_firmware

Share this vulnerability with:

Twitter Facebook LinkedIn Mail