EDS-G516E Series
by Moxa
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2020-6999 | 0.00 | — | 0.01 | Mar 26, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, some of the parameters in the setting pages do not ensure text is the correct size for its buffer. | |||
| CVE-2020-6997 | 0.00 | — | 0.01 | Mar 24, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, sensitive information is transmitted over some web applications in cleartext. | |||
| CVE-2020-6991 | 0.00 | — | 0.01 | Mar 24, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, weak password requirements may allow an attacker to gain access using brute force. | |||
| CVE-2020-6981 | 0.00 | — | 0.02 | Mar 24, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, an attacker may gain access to the system without proper authentication. | |||
| CVE-2020-6979 | 0.00 | — | 0.01 | Mar 24, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a hard-coded cryptographic key, increasing the possibility that confidential data can be recovered. | |||
| CVE-2020-7001 | 0.00 | — | 0.01 | Mar 24, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a weak cryptographic algorithm, which may allow confidential information to be disclosed. | |||
| CVE-2020-7007 | 0.00 | — | 0.03 | Mar 24, 2020 | In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the attacker may execute arbitrary codes or target the device, causing it to go out of service. | |||
| CVE-2019-19707 | 0.00 | — | 0.01 | Dec 11, 2019 | On Moxa EDS-G508E, EDS-G512E, and EDS-G516E devices (with firmware through 6.0), denial of service can occur via PROFINET DCE-RPC endpoint discovery packets. |
- CVE-2020-6999Mar 26, 2020risk 0.00cvss —epss 0.01
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, some of the parameters in the setting pages do not ensure text is the correct size for its buffer.
- CVE-2020-6997Mar 24, 2020risk 0.00cvss —epss 0.01
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, sensitive information is transmitted over some web applications in cleartext.
- CVE-2020-6991Mar 24, 2020risk 0.00cvss —epss 0.01
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, weak password requirements may allow an attacker to gain access using brute force.
- CVE-2020-6981Mar 24, 2020risk 0.00cvss —epss 0.02
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, an attacker may gain access to the system without proper authentication.
- CVE-2020-6979Mar 24, 2020risk 0.00cvss —epss 0.01
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a hard-coded cryptographic key, increasing the possibility that confidential data can be recovered.
- CVE-2020-7001Mar 24, 2020risk 0.00cvss —epss 0.01
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the affected products use a weak cryptographic algorithm, which may allow confidential information to be disclosed.
- CVE-2020-7007Mar 24, 2020risk 0.00cvss —epss 0.03
In Moxa EDS-G516E Series firmware, Version 5.2 or lower, the attacker may execute arbitrary codes or target the device, causing it to go out of service.
- CVE-2019-19707Dec 11, 2019risk 0.00cvss —epss 0.01
On Moxa EDS-G508E, EDS-G512E, and EDS-G516E devices (with firmware through 6.0), denial of service can occur via PROFINET DCE-RPC endpoint discovery packets.