Vulnerability Description
An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. Configuration data are stored in a file that is not encrypted.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Moxa | Miineport E1 Firmware | <= 1.7 |
| Moxa | Miineport E2 Firmware | <= 1.3 |
| Moxa | Miineport E3 Firmware | <= 1.0 |
| Moxa | Miineport E1 | - |
| Moxa | Miineport E2 | - |
| Moxa | Miineport E3 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/94783Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-16-343-01Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/94783Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-16-343-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2016-9346?
CVE-2016-9346 is a vulnerability with a CVSS score of 5.3 (MEDIUM). An issue was discovered in Moxa MiiNePort E1 versions prior to 1.8, E2 versions prior to 1.4, and E3 versions prior to 1.1. Configuration data are stored in a file that is not encrypted.
How severe is CVE-2016-9346?
CVE-2016-9346 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-9346?
Check the references section above for vendor advisories and patch information. Affected products include: Moxa Miineport E1 Firmware, Moxa Miineport E2 Firmware, Moxa Miineport E3 Firmware, Moxa Miineport E1, Moxa Miineport E2.