CVE-2023-28697
First published: Thu Apr 27 2023(Updated: )
Moxa MiiNePort E1 has a vulnerability of insufficient access control. An unauthenticated remote user can exploit this vulnerability to perform arbitrary system operation or disrupt service.
Credit: twcert@cert.org.tw
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa Miineport E1 Firmware | =1.7.2 | |
| Moxa MiiNePort E1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Moxa MiiNePort E1 vulnerability?
The vulnerability ID for this Moxa MiiNePort E1 vulnerability is CVE-2023-28697.
What is the severity level of CVE-2023-28697?
The severity level of CVE-2023-28697 is critical, with a severity value of 9.8.
What is the description of CVE-2023-28697?
CVE-2023-28697 is a vulnerability of insufficient access control in Moxa MiiNePort E1, which allows an unauthenticated remote user to perform arbitrary system operations or disrupt service.
Which software versions of Moxa MiiNePort E1 are affected by CVE-2023-28697?
The Moxa MiiNePort E1 firmware version 1.7.2 is affected by CVE-2023-28697.
How can I fix CVE-2023-28697?
To fix CVE-2023-28697, it is recommended to update the Moxa Miineport E1 Firmware to version 1.9 or later.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/tags
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- vendor/moxa
- canonical/moxa miineport e1 firmware
- version/moxa miineport e1 firmware/1.7.2
- canonical/moxa miineport e1