CVE-2023-33236
published 2023-05-22CVE-2023-33236: MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been reported that can be exploited to craft arbitrary JWT…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been reported that can be exploited to craft arbitrary JWT tokens and subsequently bypass authentication for web-based APIs.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | mxsecurity | — | — |
| moxa | mxsecurity_series | — | — |