Moxa MXView vulnerability can cause an attacker to execute arbitrary commands

In Moxa MXView Installation 3.1.8, the file permission method has an authorization problem flaw that may allow an attacker to execute arbitrary commands with system privileges.

Thursday, November 5, 2020, 10:55 GMT 

Image source: Moxa.com

Affected Products:

The affected products and firmware versions:

MXview Series: Firmware Version from 3.0 to 3.1.8

Solution:

The manufacturer has currently released patches for updates to repair the vulnerabilities. Link for the patches to be obtained: