CVE-2021-40392

CVSS 5.3 MEDIUMEPSS 0.6%CWE-319

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 5.3EPSS 0.6%KEV nãoPoC —Patch —

Lifecycle

14 Apr 2022Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

An information disclosure vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4. Network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to exploit this vulnerability.

CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N

Affected products

Moxa · MXView Series

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://talosintelligence.com/vulnerability_reports/TALOS-2021-1403