CVE-2023-5962

MEDIUM EPSS 19.5%

Published Dec 23, 20232y ago · Modified Jun 17, 20261w ago

6.5 CVSS 3.1

Medium

Published Dec 23, 2023 2y ago

Last Modified Jun 17, 2026 1w ago

Description

A weak cryptographic algorithm vulnerability has been identified in ioLogik E1200 Series firmware versions v3.3 and prior. This vulnerability can help an attacker compromise the confidentiality of sensitive data. This vulnerability may lead an attacker to get unexpected authorization.

CVSS Details

Base Score

6.5

Exploitability

2.8

Impact

3.6

Vector string

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Unchanged

Confidentiality High

Integrity None

Availability None

Threat Intelligence

EPSS Exploit Probability

19.5% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 2

CWE-327

CWE-328

Affected Products 20

Vendor	Product	Version	Range
moxa	iologik_e1210_firmware	*	<3.3
moxa	iologik_e1210	*	any
moxa	iologik_e1211_firmware	*	<3.3
moxa	iologik_e1211	*	any
moxa	iologik_e1212_firmware	*	<3.3
moxa	iologik_e1212	*	any
moxa	iologik_e1213_firmware	*	<3.3
moxa	iologik_e1213	*	any
moxa	iologik_e1214_firmware	*	<3.3
moxa	iologik_e1214	*	any
moxa	iologik_e1240_firmware	*	<3.3
moxa	iologik_e1240	*	any
moxa	iologik_e1241_firmware	*	<3.3
moxa	iologik_e1241	*	any
moxa	iologik_e1242_firmware	*	<3.3
moxa	iologik_e1242	*	any
moxa	iologik_e1260_firmware	*	<3.3
moxa	iologik_e1260	*	any
moxa	iologik_e1262_firmware	*	<3.3
moxa	iologik_e1262	*	any

References 1

moxa.com https://www.moxa.com/en/support/product-support/security-advisory/mpsa-235250-iologik-e1200-series-web-server-vulnerability

Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.