Bypassing Read-Only Protection Mechanism in Moxa EDS-405A and EDS-408A Switches

Bypassing Read-Only Protection Mechanism in Moxa EDS-405A and EDS-408A Switches

CVE-2015-6464 · HIGH Severity

AV:N/AC:L/AU:S/C:N/I:C/A:C

The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a web-developer plugin.

Learn more about our Web App Pen Testing.