Back to overview

CVE-2021-38454

CRITICAL
10.0
CVSS 3.1
Description
A path traversal vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to create or overwrite critical files used to execute code, such as programs or libraries.

Metadata

CVE ID
CVE-2021-38454
State
PUBLISHED
Assigner
icscert
Reserved
2021-08-10 00:00 UTC
Published
2021-10-12 13:37 UTC
Last updated
2024-09-16 23:22 UTC
Primary CWE
CWE-284
IMPROPER ACCESS CONTROL CWE-284
Vendor / Product
Moxa / MXview Network Management Software
Sources
cve.org  ·  NVD

Severity & Metrics

10.0 CRITICAL CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products (1)
VendorProductPlatformVersions
Moxa MXview Network Management Software 3.x ≤ 3.2.2
Weakness (CWE)
CWESourceDescription
CWE-284 cna IMPROPER ACCESS CONTROL CWE-284
CVSS scores (1)
ScoreSeverityVersionSourceVector
10.0 CRITICAL 3.1 cna CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
References (1)
Back to overview