VYPR

SDS-3008 Series

by Moxa

CVEs (4)

  • CVE-2022-40224Feb 7, 2023
    risk 0.00cvss epss 0.65

    A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.

  • CVE-2022-41313Feb 7, 2023
    risk 0.00cvss epss 0.01

    A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this…

  • CVE-2022-41311Feb 7, 2023
    risk 0.00cvss epss 0.01

    A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this…

  • CVE-2022-40691Feb 7, 2023
    risk 0.00cvss epss 0.01

    An information disclosure vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this…