Denial of Service Vulnerability in Moxa Switches
CVE-2015-6465

Currently unrated

Key Information:

Vendor: Moxa
Status: Eds-405a Firmware; Eds-408a Firmware
Vendor: CVE Published:; 11 September 2015

What is CVE-2015-6465?

The GoAhead web server on Moxa EDS-405A and EDS-408A switches is susceptible to a denial of service attack. By using a specially crafted URL, authenticated remote users can trigger a reboot of the device, interrupting normal operation. This vulnerability presents a significant risk in environments relying on these switches for network stability and security. Updating the firmware to version 3.6 or later is crucial to mitigate this issue.

References

https://ics-cert.us-cert.gov/advisories/ICSA-15-246-03

x_refsource_MISC

http://www.securitytracker.com/id/1033543

vdb-entryx_refsource_SECTRACK

http://www.moxa.com/support/download.aspx?type=support&id...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 11, 2015
Vulnerability Reserved
Aug 17, 2015