CVE-2016-5812
Description
Moxa OnCell cellular gateways store passwords in cleartext, allowing local users to read configuration files and obtain credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Moxa OnCell cellular gateways store passwords in cleartext, allowing local users to read configuration files and obtain credentials.
Vulnerability
The vulnerability is cleartext storage of passwords in the configuration files of Moxa OnCell G3100V2 devices prior to Version 2.8 and OnCell G3111, G3151, G3211, and G3251 devices prior to Version 1.7 [1]. The passwords are stored without encryption, making them readable from the device's file system.
Exploitation
An attacker with local access to an affected device can read the configuration file where passwords are stored in cleartext [1]. No authentication or special privileges are required beyond the ability to access the file system locally.
Impact
Successful exploitation allows the attacker to obtain cleartext passwords stored on the device. This could lead to disclosure of sensitive credentials and potentially enable further unauthorized access to the device or associated systems [1].
Mitigation
Moxa has released firmware updates to fix this issue: OnCell G3100V2 series should be updated to Version 2.8 or later, and OnCell G3111/G3151/G3211/G3251 series to Version 1.7 or later [1]. No workarounds are documented in the available reference.
AI Insight generated on May 23, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <2.8
- Range: <1.7
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- ics-cert.us-cert.gov/advisories/ICSA-16-236-01nvdMitigationThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/92605nvd
News mentions
0No linked articles in our index yet.