CVE Daily

CVE-2015-6481

The login function in the RequestController class in Moxa OnCell Central Manager...

High CVSS 8.3

Overview

The login function in the RequestController class in Moxa OnCell Central Manager before 2.2 has a hardcoded root password, which allows remote attackers to obtain administrative access via a login session.

CWE: N/A Published: 2015-12-21T11:59:06.080
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.3 (HIGH)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags