1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. Moxa IKS, EDS

CVE CVE-2019-6563 Mappings

Moxa IKS and EDS generate a predictable cookie calculated with an MD5 hash, allowing an attacker to capture the administrator's password, which could lead to a full compromise of the device.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2019-6563 Moxa IKS, EDS primary_impact T1539 Steal Web Session Cookie
CVE-2019-6563 Moxa IKS, EDS secondary_impact T1078 Valid Accounts
CVE-2019-6563 Moxa IKS, EDS exploitation_technique T1110 Brute Force