CVE-2017-14030

14 Jan 2018

[ICS] Moxa MXview – Unquoted Search Path Vulnerability

Vendor: Moxa
Equipment: MXview
Vulnerability: Unquoted Search Path

ICS-CERT Advisory
https://ics-cert.us-cert.gov/advisories/ICSA-18-011-02

CVE-ID
CVE-2017-14030

AFFECTED PRODUCTS
The following versions of MXview, network management software, are affected:

  • MXview v2.8 and prior.

IMPACT
Successful exploitation of this vulnerability may allow an authenticated, but non-privileged, local user to execute arbitrary code with elevated privileges.

Read on for details.

Read more