CVE-2020-13536

Name of the Vulnerable Software and Affected Versions Moxa MXView version 3.1.8

Description The issue is related to incorrect default access control settings in Moxa MXView, allowing an attacker to exploit a local privilege elevation vulnerability. This can enable the execution of arbitrary commands with system user privileges. The vulnerability exists in the file system permissions of the Moxa MXView series installation, specifically affecting the MXViewService, which runs as a NT SYSTEM authority user and executes Node.js scripts to start additional application functionality. An attacker can potentially add code to a script or replace a binary, depending on the chosen vector.

Recommendations For Moxa MXView version 3.1.8, consider restricting access to the MXViewService to minimize the risk of exploitation until a patch is available. As a temporary workaround, disabling the execution of Node.js scripts by MXViewService may help mitigate the issue. However, the most effective resolution would be to update the access control settings to prevent unauthorized access and command execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.