CVE-2016-2282
First published: Fri Mar 04 2016(Updated: )
Moxa ioLogik E2200 devices before 3.12 and ioAdmin Configuration Utility before 3.18 do not properly encrypt credentials, which makes it easier for remote attackers to obtain the associated cleartext via unspecified vectors.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa Ioadmin Firmware | <=3.17 | |
| Moxa Iologik Firmware | <=3.11 | |
| Moxa Iologik E2210 | ||
| Moxa Iologik E2210-t | ||
| Moxa Iologik E2212 | ||
| Moxa Iologik E2212-t | ||
| Moxa Iologik E2214 | ||
| Moxa Iologik E2214-t | ||
| Moxa Iologik E2240 | ||
| Moxa Iologik E2240-t | ||
| Moxa Iologik E2242 | ||
| Moxa Iologik E2242-t | ||
| Moxa Iologik E2260 | ||
| Moxa Iologik E2260-t | ||
| Moxa Iologik E2262 | ||
| Moxa Iologik E2262-t |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/moxa
- canonical/moxa ioadmin firmware
- version/moxa ioadmin firmware/3.17
- canonical/moxa iologik firmware
- version/moxa iologik firmware/3.11
- canonical/moxa iologik e2210
- canonical/moxa iologik e2210-t
- canonical/moxa iologik e2212
- canonical/moxa iologik e2212-t
- canonical/moxa iologik e2214
- canonical/moxa iologik e2214-t
- canonical/moxa iologik e2240
- canonical/moxa iologik e2240-t
- canonical/moxa iologik e2242
- canonical/moxa iologik e2242-t
- canonical/moxa iologik e2260
- canonical/moxa iologik e2260-t
- canonical/moxa iologik e2262
- canonical/moxa iologik e2262-t