CVE-2019-6563
published 2019-03-05CVE-2019-6563: Moxa IKS and EDS generate a predictable cookie calculated with an MD5 hash, allowing an attacker to capture the administrator's password, which could lead to a…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Moxa IKS and EDS generate a predictable cookie calculated with an MD5 hash, allowing an attacker to capture the administrator's password, which could lead to a full compromise of the device.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| chrome_chrome | — | — | |
| moxa | eds-405a_firmware | <= 3.8 | — |
| moxa | eds-408a_firmware | <= 3.8 | — |
| moxa | eds-510a_firmware | <= 3.8 | — |
| moxa | iks-g6824a_firmware | <= 4.5 | — |