CVE-2016-5812

CWE-200 — Information Exposure3 documents3 sources

Severity

3.3LOW

EPSS

0.0%

top 85.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Moxa Oncell G3001 Firmware Moxa Oncell G3100v2 Firmware

Timeline

PublishedAug 24

Latest updateMay 17

Description

Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 use cleartext password storage, which makes it easier for local users to obtain sensitive information by reading a configuration file.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

▶NVDmoxa/oncell_g3100v2_firmware2.7

▶NVDmoxa/oncell_g3001_firmware1.6

🔴Vulnerability Details

GHSA

GHSA-j549-w2g8-v63q: Moxa OnCell G3100V2 devices before 2↗2022-05-17

▶

CVEList

CVE-2016-5812: Moxa OnCell G3100V2 devices before 2↗2016-08-24

▶