CVE-2024-4739

The lack of access restriction to a resource from unauthorized users makes MXsecurity software versions v1.1.0 and prior vulnerable. By acquiring a valid authenticator, an attacker can pose as an authorized user and successfully access the resource.
Configurations

Configuration 1 (hide)

cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*

History

22 Oct 2024, 14:07

Type Values Removed Values Added
CPE cpe:2.3:a:moxa:mxsecurity:*:*:*:*:*:*:*:*
First Time Moxa mxsecurity
Moxa
CWE NVD-CWE-Other
CVSS v2 : unknown
v3 : 5.3
v2 : unknown
v3 : 7.5
References () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-231878-mxsecurity-series-multiple-vulnerabilities - () https://www.moxa.com/en/support/product-support/security-advisory/mpsa-231878-mxsecurity-series-multiple-vulnerabilities - Vendor Advisory

18 Oct 2024, 12:52

Type Values Removed Values Added
Summary
  • (es) La falta de restricción de acceso a un recurso por parte de usuarios no autorizados hace que las versiones v1.1.0 y anteriores del software MXsecurity sean vulnerables. Al obtener un autenticador válido, un atacante puede hacerse pasar por un usuario autorizado y acceder al recurso con éxito.

18 Oct 2024, 09:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-18 09:15

Updated : 2024-10-22 14:07


NVD link : CVE-2024-4739

Mitre link : CVE-2024-4739

CVE.ORG link : CVE-2024-4739


JSON object : View

Products Affected

moxa

  • mxsecurity
CWE
NVD-CWE-Other CWE-749

Exposed Dangerous Method or Function