CVE-2017-14030
First published: Fri Jan 12 2018(Updated: )
An issue was discovered in Moxa MXview v2.8 and prior. The unquoted service path escalation vulnerability could allow an authorized user with file access to escalate privileges by inserting arbitrary code into the unquoted service path.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa MXview | <=2.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-14030?
CVE-2017-14030 is an unquoted service path escalation vulnerability in Moxa MXview v2.8 and prior versions.
How can an authorized user exploit CVE-2017-14030?
An authorized user with file access can escalate privileges by inserting arbitrary code into the unquoted service path.
What is the severity of CVE-2017-14030?
CVE-2017-14030 has a severity rating of 7.8 (high).
How do I fix CVE-2017-14030?
To fix CVE-2017-14030, update to a version of Moxa MXview that is later than 2.8 or apply any patches or security fixes provided by the vendor.
Where can I find more information about CVE-2017-14030?
You can find more information about CVE-2017-14030 on the following websites: [securityfocus.com](http://www.securityfocus.com/bid/102494) and [ics-cert.us-cert.gov](https://ics-cert.us-cert.gov/advisories/ICSA-18-011-02).
- collector/nvd-index
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/moxa
- canonical/moxa mxview
- version/moxa mxview/2.8