CVE-2015-6465

3 documents3 sources

Severity

6.8MEDIUM

EPSS

1.5%

top 18.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Moxa Eds-405a Firmware Moxa Eds-408a Firmware

Timeline

PublishedSep 11

Latest updateMay 17

Description

The GoAhead web server on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to cause a denial of service (reboot) via a crafted URL.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 8.0 | Impact: 6.9

Affected Packages2 packages

▶NVDmoxa/eds-405a_firmware3.4

▶NVDmoxa/eds-408a_firmware3.4

Patches

Patch: www.moxa.com ↗Patch: www.moxa.com ↗

🔴Vulnerability Details

GHSA

GHSA-pmmq-58p7-vf7f: The GoAhead web server on Moxa EDS-405A and EDS-408A switches with firmware before 3↗2022-05-17

▶

CVEList

CVE-2015-6465: The GoAhead web server on Moxa EDS-405A and EDS-408A switches with firmware before 3↗2015-09-11

▶