CVE-2016-5799

CWE-2853 documents3 sources

Severity

9.8CRITICAL

EPSS

0.9%

top 24.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Moxa Oncell G3001 Firmware Moxa Oncell G3100v2 Firmware

Timeline

PublishedAug 24

Latest updateMay 17

Description

Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 do not properly restrict authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDmoxa/oncell_g3100v2_firmware2.7

▶NVDmoxa/oncell_g3001_firmware1.6

🔴Vulnerability Details

GHSA

GHSA-rcrj-xc4j-xjqv: Moxa OnCell G3100V2 devices before 2↗2022-05-17

▶

CVEList

CVE-2016-5799: Moxa OnCell G3100V2 devices before 2↗2016-08-24

▶