Known Vulnerabilities for products from Mobatek
Listed below are 9 of the newest known vulnerabilities associated with the vendor "Mobatek".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-6421 json | Not Provided | 2026-04-17 | 2026-04-17 | |
| CVE-2022-38337 json | When aborting a SFTP connection, MobaXterm before v22.1 sends a hardcoded password to the server. The server treats this as a... | 9.1 - CRITICAL | 2022-12-06 | 2023-02-03 |
| CVE-2022-38336 json | An access control issue in MobaXterm before v22.1 allows attackers to make connections to the server via the SSH or SFTP prot... | 8.1 - HIGH | 2022-12-06 | 2022-12-06 |
| CVE-2021-28847 json | MobaXterm before 21.0 allows remote servers to cause a denial of service (Windows GUI hang) via tab title change requests tha... | 7.5 - HIGH | 2021-06-03 | 2022-07-12 |
| CVE-2019-16305 json | In MobaXterm 11.1 and 12.1, the protocol handler is vulnerable to command injection. A crafted link can trigger a popup askin... | 8.8 - HIGH | 2019-09-14 | 2020-08-24 |
| CVE-2019-13475 json | In MobaXterm 11.1, the mobaxterm: URI handler has an argument injection vulnerability that allows remote attackers to execute... | 8.8 - HIGH | 2019-07-09 | 2019-07-16 |
| CVE-2019-7690 json | In MobaTek MobaXterm Personal Edition v11.1 Build 3860, the SSH private key and its password can be retrieved from process me... | 9.8 - CRITICAL | 2019-05-13 | 2019-05-15 |
| CVE-2017-15376 json | The TELNET service in Mobatek MobaXterm 10.4 does not require authentication, which allows remote attackers to execute arbitr... | 9.8 - CRITICAL | 2017-10-16 | 2020-07-30 |
| CVE-2017-6805 json | Directory traversal vulnerability in the TFTP server in MobaXterm Personal Edition 9.4 allows remote attackers to read arbitr... | 5.3 - MEDIUM | 2017-03-20 | 2017-03-23 |
| CVE-2015-7244 json | The default configuration of the server in MobaXterm before 8.3 has a disabled Access Control setting and consequently does n... | 7.5 - HIGH | 2015-11-04 | 2015-11-04 |
Known software with vulnerabilities from Mobatek
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Mobatek | Mobaxterm | 10.0 |