Moxa OnCell G3100V2 devices before 2.8 and G3111, G3151, G3211, and G3251 devices before 1.7 do not properly restrict authentication attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
References
Link | Resource |
---|---|
https://ics-cert.us-cert.gov/advisories/ICSA-16-236-01 | Mitigation Third Party Advisory US Government Resource |
http://www.securityfocus.com/bid/92606 |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Information
Published : 2016-08-23 19:00
Updated : 2016-11-28 12:29
NVD link : CVE-2016-5799
Mitre link : CVE-2016-5799
JSON object : View
CWE
CWE-285
Improper Authorization
Products Affected
moxa
- oncell_g3211
- oncell_g3001_firmware
- oncell_g3151
- oncell_g3100v2
- oncell_g3111
- oncell_g3100v2_firmware
- oncell_g3251