CVE-2026-3867
Published: Apr 27, 2026
Modified: Apr 27, 2026
Description
An improper ownership management vulnerability has been identified in Moxa’s Secure Router. Because of improper ownership management, a low-privileged authenticated user may access a configuration file containing the hashed password of the administrative account. Successful exploitation of this vulnerability could allow an attacker to obtain sensitive information. Exploitation is only possible under a specific condition — when the configuration file has been exported. This vulnerability does not impact the integrity or availability of the affected product, and no confidentiality, integrity, or availability impact to the subsequent system has been identified.
| Vendor | Product | Versions |
|---|---|---|
Moxa | EDR-8010 Series | affected 1.0 - <= 3.23unaffected 3.24 |
Moxa | EDR-G9010 Series | affected 1.0 - <= 3.23.1affected 3.24 |
Weaknesses (CWE)
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now