Extraction of Private Keys from MOXA EDS-G512E Devices
CVE-2017-13698
7.5HIGH
What is CVE-2017-13698?
A vulnerability has been identified in MOXA EDS-G512E devices where an attacker can extract both public and private keys from the firmware image available on the manufacturer's website. This weakness poses a significant risk since the compromised keys can be utilized against production switches that utilize the default key settings, potentially leading to unauthorized access and control. It is crucial for users to take immediate measures to secure their devices and update firmware to mitigate exposure.