GCVE - cpe:2.3:a:n/a:moxa_iologik_2500_series_firmware,_version_3.0_or_lower,_ioxpress_configuration_utility,_version_2.3.0_or

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:moxa_iologik_2500_series_firmware,_version_3.0_or_lower,_ioxpress_configuration_utility,_version_2.3.0_or_lower:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Moxa Iologik 2500 Series Firmware, Version 3.0 Or Lower, Ioxpress Configuration Utility, Version 2.3.0 Or Lower (`f78aa0d1-0ed2-51fe-9972-2aa9f4f7e16b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2020-7003`	vulnerable	2026-06-08 05:27:11.688255	Details available In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, sensitive information is transmitted over some web applications in clear text. Published: 2020-03-24T17:02:34.000Z Updated: 2024-08-04T09:18:02.522Z Open on db.gcve.eu Reference links https://www.us-cert.gov/ics/advisories/icsa-20-056-02	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-18242`	vulnerable	2026-06-08 05:13:11.252622	Details available In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, frequent and multiple requests for short-term use may cause the web server to fail. Published: 2020-03-24T16:53:32.000Z Updated: 2024-08-05T01:47:14.073Z Open on db.gcve.eu Reference links https://www.us-cert.gov/ics/advisories/icsa-20-056-02	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-18238`	vulnerable	2026-06-08 05:13:11.219781	Details available In Moxa ioLogik 2500 series firmware, Version 3.0 or lower, and IOxpress configuration utility, Version 2.3.0 or lower, sensitive information is stored in configuration files without encryption, which may allow an attacker to access an administrative account. Published: 2020-02-26T21:19:56.000Z Updated: 2024-08-05T01:47:14.071Z Open on db.gcve.eu Reference links https://www.us-cert.gov/ics/advisories/icsa-20-056-02	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Moxa Iologik 2500 Series Firmware, Version 3.0 Or Lower, Ioxpress Configuration Utility, Version 2.3.0 Or Lower

PURL mappings

Vulnerability references

Contribute