Denial of Service Vulnerability in MOXA Mgate MB3180
CVE-2021-33823

7.5HIGH

Key Information:

Vendor: Moxa
Status: Mgate Mb3180 Firmware
Vendor: CVE Published:; 18 June 2021

Summary

A denial of service vulnerability exists in the MOXA Mgate MB3180, where an attacker can exploit the web service by flooding it with a large volume of TCP SYN packets. This attack may lead to resource exhaustion on the web server, rendering it unavailable to legitimate users. It is crucial for organizations using this device to implement mitigation strategies to prevent potential disruptions.

References

https://www.moxa.com/en/products/industrial-edge-connecti...

x_refsource_MISC

https://github.com/Jian-Xian/CVE-POC/blob/master/CVE-2021...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 18, 2021
Vulnerability Reserved
Jun 3, 2021