Plaintext Transmission of Sensitive Data in Moxa Industrial Switches

Plaintext Transmission of Sensitive Data in Moxa Industrial Switches

CVE-2019-6526 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative password.

Learn more about our Web Application Penetration Testing UK.