// For flags

CVE-2016-2286

 

Severity Score

7.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Moxa MiiNePort_E1_4641 devices with firmware 1.1.10 Build 09120714, MiiNePort_E1_7080 devices with firmware 1.1.10 Build 09120714, MiiNePort_E2_1242 devices with firmware 1.1 Build 10080614, MiiNePort_E2_4561 devices with firmware 1.1 Build 10080614, and MiiNePort E3 devices with firmware 1.0 Build 11071409 have a blank default password, which allows remote attackers to obtain access via unspecified vectors.

Dispositivos Moxa MiiNePort_E1_4641 con firmware 1.1.10 Build 09120714, dispositivos MiiNePort_E1_7080 con firmware 1.1.10 Build 09120714, dispositivos MiiNePort_E2_1242 con firmware 1.1 Build 10080614, dispositivos MiiNePort_E2_4561 con firmware 1.1 Build 10080614 y dispositivos MiiNePort E3 con firmware 1.0 Build 11071409 tienen una contraseña en blanco por defecto, lo que permite a atacantes remotos obtener acceso a través de vectores no especificados.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2016-02-09 CVE Reserved
  • 2016-05-03 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-287: Improper Authentication
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Moxa
Search vendor "Moxa"
Miineport E2 1242 Firmware
Search vendor "Moxa" for product "Miineport E2 1242 Firmware"
1.1
Search vendor "Moxa" for product "Miineport E2 1242 Firmware" and version "1.1"
-
Affected
in Moxa
Search vendor "Moxa"
Miineport E2 1242
Search vendor "Moxa" for product "Miineport E2 1242"
--
Safe
Moxa
Search vendor "Moxa"
Miineport E1 7080 Firmware
Search vendor "Moxa" for product "Miineport E1 7080 Firmware"
1.1.10
Search vendor "Moxa" for product "Miineport E1 7080 Firmware" and version "1.1.10"
-
Affected
in Moxa
Search vendor "Moxa"
Miineport E1 7080
Search vendor "Moxa" for product "Miineport E1 7080"
--
Safe
Moxa
Search vendor "Moxa"
Miineport E2 4561 Firmware
Search vendor "Moxa" for product "Miineport E2 4561 Firmware"
1.1
Search vendor "Moxa" for product "Miineport E2 4561 Firmware" and version "1.1"
-
Affected
in Moxa
Search vendor "Moxa"
Miineport E2 4561
Search vendor "Moxa" for product "Miineport E2 4561"
--
Safe
Moxa
Search vendor "Moxa"
Miineport E3 Firmware
Search vendor "Moxa" for product "Miineport E3 Firmware"
1.0
Search vendor "Moxa" for product "Miineport E3 Firmware" and version "1.0"
-
Affected
in Moxa
Search vendor "Moxa"
Miineport E3
Search vendor "Moxa" for product "Miineport E3"
--
Safe
Moxa
Search vendor "Moxa"
Miineport E1 4641 Firmware
Search vendor "Moxa" for product "Miineport E1 4641 Firmware"
1.1.10
Search vendor "Moxa" for product "Miineport E1 4641 Firmware" and version "1.1.10"
-
Affected
in Moxa
Search vendor "Moxa"
Miineport E1 4641
Search vendor "Moxa" for product "Miineport E1 4641"
--
Safe