Moxa IKS and EDS does not properly check authority on server side, which results in a read-only user being able to perform arbitrary configuration changes.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2019-03-05T21:00:00Z

Updated: 2024-09-16T19:01:03.479Z

Reserved: 2019-01-22T00:00:00

Link: CVE-2019-6520

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2019-03-05T20:29:00.297

Modified: 2020-10-19T17:51:39.963

Link: CVE-2019-6520

cve-icon Redhat

No data.