CVE-2016-8350
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An issue was discovered in Moxa ioLogik E1210, firmware Version V2.4 and prior, ioLogik E1211, firmware Version V2.3 and prior, ioLogik E1212, firmware Version V2.4 and prior, ioLogik E1213, firmware Version V2.5 and prior, ioLogik E1214, firmware Version V2.4 and prior, ioLogik E1240, firmware Version V2.3 and prior, ioLogik E1241, firmware Version V2.4 and prior, ioLogik E1242, firmware Version V2.4 and prior, ioLogik E1260, firmware Version V2.4 and prior, ioLogik E1262, firmware Version V2.4 and prior, ioLogik E2210, firmware versions prior to V3.13, ioLogik E2212, firmware versions prior to V3.14, ioLogik E2214, firmware versions prior to V3.12, ioLogik E2240, firmware versions prior to V3.12, ioLogik E2242, firmware versions prior to V3.12, ioLogik E2260, firmware versions prior to V3.13, and ioLogik E2262, firmware versions prior to V3.12. The web application may not sufficiently verify whether a request was provided by a valid user (CROSS-SITE REQUEST FORGERY).
Ha sido descubierto un problema en Moxa ioLogik E1210, firmware Versión V2.4 y anterior, ioLogik E1211, firmware Versión V2.3 y anteriores, ioLogik E1212, firmware Versión V2.4 y anteriores, ioLogik E1213, firmware Versión V2.5 y anteriores, IoLogik E1214, firmware Versión V2.4 y anteriores, ioLogik E1240, firmware Versión V2.3 y anteriores, ioLogik E1241, firmware Versión V2.4 y anteriores, ioLogik E1242, firmware Versión V2.4 y anteriores, ioLogik E1260, firmware Versión V2 .4 y anteriores, ioLogik E1262, versiones de firmware V2.4 y anteriores, ioLogik E2210, versiones de firmware anteriores a V3.13, ioLogik E2212, versiones de firmware anteriores a V3.14, ioLogik E2214, versiones de firmware anteriores a V3.12, ioLogik E2240, versiones de firmware anteriores a V3.12, ioLogik E2242, versiones de firmware anteriores a V3.12, ioLogik E2260, versiones de firmware anteriores a V3.13 y ioLogik E2262, versiones de firmware anteriores a V3.12. Es posible que la aplicación web no verifique suficientemente si una solicitud fue proporcionada por un usuario válido (CROSS-SITE REQUEST FORGERY).
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-09-28 CVE Reserved
- 2017-02-13 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/93550 | Third Party Advisory | |
| https://ics-cert.us-cert.gov/advisories/ICSA-16-287-05 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1210 Search vendor "Moxa" for product "Iologik E1210" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1212 Search vendor "Moxa" for product "Iologik E1212" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1214 Search vendor "Moxa" for product "Iologik E1214" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1241 Search vendor "Moxa" for product "Iologik E1241" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1242 Search vendor "Moxa" for product "Iologik E1242" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1260 Search vendor "Moxa" for product "Iologik E1260" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1262 Search vendor "Moxa" for product "Iologik E1262" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.3 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.3" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1211 Search vendor "Moxa" for product "Iologik E1211" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.3 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.3" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1240 Search vendor "Moxa" for product "Iologik E1240" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.5 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.5" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1213 Search vendor "Moxa" for product "Iologik E1213" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2214 Search vendor "Moxa" for product "Iologik E2214" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2240 Search vendor "Moxa" for product "Iologik E2240" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2242 Search vendor "Moxa" for product "Iologik E2242" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2262 Search vendor "Moxa" for product "Iologik E2262" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.12 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.12" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2210 Search vendor "Moxa" for product "Iologik E2210" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.12 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.12" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2260 Search vendor "Moxa" for product "Iologik E2260" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.13 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.13" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2212 Search vendor "Moxa" for product "Iologik E2212" | - | - |
Safe
|