CVE-2016-8359
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An issue was discovered in Moxa ioLogik E1210, firmware Version V2.4 and prior, ioLogik E1211, firmware Version V2.3 and prior, ioLogik E1212, firmware Version V2.4 and prior, ioLogik E1213, firmware Version V2.5 and prior, ioLogik E1214, firmware Version V2.4 and prior, ioLogik E1240, firmware Version V2.3 and prior, ioLogik E1241, firmware Version V2.4 and prior, ioLogik E1242, firmware Version V2.4 and prior, ioLogik E1260, firmware Version V2.4 and prior, ioLogik E1262, firmware Version V2.4 and prior, ioLogik E2210, firmware versions prior to V3.13, ioLogik E2212, firmware versions prior to V3.14, ioLogik E2214, firmware versions prior to V3.12, ioLogik E2240, firmware versions prior to V3.12, ioLogik E2242, firmware versions prior to V3.12, ioLogik E2260, firmware versions prior to V3.13, and ioLogik E2262, firmware versions prior to V3.12. The web application fails to sanitize user input, which may allow an attacker to inject script or execute arbitrary code (CROSS-SITE SCRIPTING).
Ha sido descubierto un problema en Moxa ioLogik E1210, firmware Versión V2.4 y anteriores, ioLogik E1211, firmware Versión V2.3 y anteriores, ioLogik E1212, firmware Versión V2.4 y anteriores, ioLogik E1213, firmware Versión V2.5 y anteriores, IoLogik E1214, firmware Versión V2.4 y anteriores, ioLogik E1240, firmware Versión V2.3 y anteriores, ioLogik E1241, firmware Versión V2.4 y anteriores, ioLogik E1242, firmware Versión V2.4 y anteriores, ioLogik E1260, firmware Versión V2 .4 y anteriores, ioLogik E1262, versiones de firmware V2.4 y anteriores, ioLogik E2210, versiones de firmware anteriores a V3.13, ioLogik E2212, versiones de firmware anteriores a V3.14, ioLogik E2214, versiones de firmware anteriores a V3.12, ioLogik E2240, versiones de firmware anteriores a V3.12, ioLogik E2242, versiones de firmware anteriores a V3.12, ioLogik E2260, versiones de firmware anteriores a V3.13 y ioLogik E2262, versiones de firmware anteriores a V3.12. La aplicación web no puede desinfectar la entrada del usuario, lo que puede permitir a un atacante inyectar secuencias de comandos o ejecutar código arbitrario (CROSS-SITE SCRIPTING).
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-09-28 CVE Reserved
- 2017-02-13 CVE Published
- 2024-01-17 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/93550 | Third Party Advisory | |
| https://ics-cert.us-cert.gov/advisories/ICSA-16-287-05 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1210 Search vendor "Moxa" for product "Iologik E1210" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1212 Search vendor "Moxa" for product "Iologik E1212" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1214 Search vendor "Moxa" for product "Iologik E1214" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1241 Search vendor "Moxa" for product "Iologik E1241" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1242 Search vendor "Moxa" for product "Iologik E1242" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1260 Search vendor "Moxa" for product "Iologik E1260" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.4 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.4" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1262 Search vendor "Moxa" for product "Iologik E1262" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.3 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.3" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1211 Search vendor "Moxa" for product "Iologik E1211" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.3 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.3" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1240 Search vendor "Moxa" for product "Iologik E1240" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E1200 Series Firmware Search vendor "Moxa" for product "Iologik E1200 Series Firmware" | <= 2.5 Search vendor "Moxa" for product "Iologik E1200 Series Firmware" and version " <= 2.5" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E1213 Search vendor "Moxa" for product "Iologik E1213" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2214 Search vendor "Moxa" for product "Iologik E2214" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2240 Search vendor "Moxa" for product "Iologik E2240" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2242 Search vendor "Moxa" for product "Iologik E2242" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.11 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.11" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2262 Search vendor "Moxa" for product "Iologik E2262" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.12 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.12" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2210 Search vendor "Moxa" for product "Iologik E2210" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.12 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.12" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2260 Search vendor "Moxa" for product "Iologik E2260" | - | - |
Safe
|
| Moxa Search vendor "Moxa" | Iologik E2200 Series Firmware Search vendor "Moxa" for product "Iologik E2200 Series Firmware" | <= 3.13 Search vendor "Moxa" for product "Iologik E2200 Series Firmware" and version " <= 3.13" | - |
Affected
| in | Moxa Search vendor "Moxa" | Iologik E2212 Search vendor "Moxa" for product "Iologik E2212" | - | - |
Safe
|