CVE-2020-14511

9.8CRITICAL

Key Information:

Vendor: Moxa
Status: Edr-g902 And Edr-g903 Series Routers
Vendor: CVE Published:; 15 July 2020

Summary

Malicious operation of the crafted web browser cookie may cause a stack-based buffer overflow in the system web server on the EDR-G902 and EDR-G903 Series Routers (versions prior to 5.4).

Affected Version(s)

EDR-G902 and EDR-G903 Series Routers Versions prior to 5.4

References

https://us-cert.cisa.gov/ics/advisories/icsa-20-196-02

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 15, 2020
Vulnerability Reserved
Jun 19, 2020