CVE-2023-39981: MXsecurity Device Information Disclosure
First published: Sat Sep 02 2023(Updated: )
A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1. This vulnerability arises from inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker.
Credit: psirt@moxa.com psirt@moxa.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa Mxsecurity | <=1.0.1 |
Remedy
Moxa has developed appropriate solution to address the vulnerability. The solution for affected product is shown below. * MXsecurity: Please upgrade to software v1.1.0 or higher.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2023-39981?
CVE-2023-39981 is a vulnerability found in MXsecurity versions prior to v1.0.1 that allows for unauthorized access.
What is the severity of CVE-2023-39981?
The severity of CVE-2023-39981 is high with a severity value of 7.5.
How does CVE-2023-39981 occur?
CVE-2023-39981 occurs due to inadequate authentication measures, potentially leading to the disclosure of device information by a remote attacker.
Which software versions are affected by CVE-2023-39981?
MXsecurity versions prior to v1.0.1 are affected by CVE-2023-39981.
How can I fix CVE-2023-39981?
To fix CVE-2023-39981, update to MXsecurity version 1.0.1 or newer.
- collector/nvd-index
- agent/author
- agent/softwarecombine
- agent/type
- agent/title
- agent/severity
- agent/references
- agent/first-publish-date
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/weakness
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- vendor/moxa
- canonical/moxa mxsecurity
- version/moxa mxsecurity/1.0.1