Cleartext Transmission of Password Vulnerability in Moxa AWK-3131A Wireless Access Point

Cleartext Transmission of Password Vulnerability in Moxa AWK-3131A Wireless Access Point

CVE-2016-8716 · HIGH Severity

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

An exploitable Cleartext Transmission of Password vulnerability exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. The Change Password functionality of the Web Application transmits the password in cleartext. An attacker capable of intercepting this traffic is able to obtain valid credentials.

Learn more about our Web App Pen Testing.