PT-2017-9759 · Moxa · Moxa Awk-3131A Wireless Access Point
Published
2017-04-12
·
Updated
2022-12-14
·
CVE-2016-8716
CVSS v3.1
7.5
High
| Vector | AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Moxa AWK-3131A Wireless Access Point version 1.1
Description
A Cleartext Transmission of Password issue exists in the Web Application functionality. The Change Password functionality transmits the password in cleartext, allowing an attacker who can intercept this traffic to obtain valid credentials.
Recommendations
For Moxa AWK-3131A Wireless Access Point version 1.1, consider disabling the Change Password functionality in the Web Application until a patch is available to prevent cleartext transmission of passwords. Restrict access to the Web Application to minimize the risk of exploitation.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Moxa Awk-3131A Wireless Access Point