CVE-2023-4229

CWE-1021ClickjackingCWE-129Improper Array Index Validation5 documents5 sources
Severity
4.7MEDIUM
EPSS
0.1%
top 68.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Moxa Iologik 4000 SeriesMoxa Iologik E4200 Firmware
Timeline
PublishedAug 24
Latest updateDec 9

Description

A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v1.6 and prior, potentially exposing users to security risks. This vulnerability may allow attackers to trick users into interacting with malicious content, leading to unintended actions or unauthorized data disclosures.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5moxa/iologik_4000_series1.01.6

🔴Vulnerability Details

3
OSV
ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set()2025-12-09
CVEList
ioLogik 4000 Series: Session Headers Not Implemented2023-08-24
GHSA
GHSA-mffg-qrhg-gg4p: A vulnerability has been identified in ioLogik 4000 Series (ioLogik E4200) firmware versions v12023-08-24

📋Vendor Advisories

1
Red Hat
kernel: ALSA: hda/ca0132: fixup buffer overrun at tuning_ctl_set()2025-12-09
CVE-2023-4229 (MEDIUM CVSS 4.7) | A vulnerability has been identified | cvebase.io