CVE-2020-6983

CWE-321CWE-798Hard-coded Credentials3 documents3 sources
Severity
7.5HIGH
EPSS
0.4%
top 40.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
55
Moxa Pt-7528-12msc-12tx-4gsfp-hv-hv FirmwareMoxa Pt-7528-12msc-12tx-4gsfp-hv FirmwareMoxa Pt-7528-12msc-12tx-4gsfp-wv-wv Firmware+52 more
Timeline
PublishedMar 24
Latest updateMay 24

Description

In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the affected products use a hard-coded cryptographic key, which increases the possibility that confidential data can be recovered.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages55 packages

🔴Vulnerability Details

2
GHSA
GHSA-6q75-7wm8-cjfw: In Moxa PT-7528 series firmware, Version 42022-05-24
CVEList
CVE-2020-6983: In Moxa PT-7528 series firmware, Version 42020-03-24
CVE-2020-6983 (HIGH CVSS 7.5) | In Moxa PT-7528 series firmware | cvebase.io