CVE-2018-18391

4 documents4 sources
Severity
8.8HIGH
EPSS
0.4%
top 39.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Moxa Thingspro Iiot Gateway AND Device Management Software SolutionsMoxa Thingspro
Timeline
PublishedOct 19
Latest updateMay 13

Description

User Privilege Escalation in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 2.1.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-pmpp-7jh8-v8hq: User Privilege Escalation in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 22022-05-13
CVEList
CVE-2018-18391: User Privilege Escalation in Moxa ThingsPro IIoT Gateway and Device Management Software Solutions version 22018-10-19

💥Exploits & PoCs

1
Exploit-DB
ServersCheck Monitoring Software 14.3.3 - 'id' SQL Injection2018-10-23