HIGH🇬🇧 English

CVE-2016-5793

CVSS 8.8v3.0pub. 2016-09-24upd. 2026-05-06

Unquoted Windows search path vulnerability in Moxa Active OPC Server before 2.4.19 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory.

oryginał EN
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Moxa Active Opc Server

    OS
    Moxa
    ≤ 2.4.18
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2023-39979CRITICAL9.8ten sam vendor

There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication....

CVE-2023-33236CRITICAL9.8ten sam vendor

MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been report...

CVE-2023-28697CRITICAL9.8ten sam vendor

Moxa MiiNePort E1 has a vulnerability of insufficient access control. An unauthenticated remote user can explo...

CVE-2021-40390CRITICAL9.8ten sam vendor

An authentication bypass vulnerability exists in the Web Application functionality of Moxa MXView Series 3.2.4...

CVE-2021-32974CRITICAL9.8ten sam vendor

Improper input validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or...

CVE-2016-5793 — HIGH 8.8 | CVEbaza.pl