Vulnerability Description
An improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-privileged authenticated user may access a configuration file containing the hashed password of the administrative account. Successful exploitation of this vulnerability could allow an attacker to obtain sensitive information. Exploitation is only possible under a specific condition — when the configuration file has been exported. This vulnerability does not impact the integrity or availability of the affected product, and no confidentiality, integrity, or availability impact to the subsequent system has been identified.
Related Weaknesses (CWE)
References
FAQ
What is CVE-2026-3867?
CVE-2026-3867 is a documented vulnerability. An improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-privileged authenticated user may access a configuration fil...
How severe is CVE-2026-3867?
CVSS scoring is not yet available for CVE-2026-3867. Check NVD for updates.
Is there a patch for CVE-2026-3867?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.