Weak Algorithm in Moxa TN-5900 Devices Allows Integrity Inspection Bypass
CVE-2021-46559

7.5HIGH

Key Information:

Vendor: Moxa
Status: Tn-5900 Firmware
Vendor: CVE Published:; 26 January 2022

What is CVE-2021-46559?

The Moxa TN-5900 devices, specifically firmware versions through 3.1, are affected by a vulnerability that stems from the use of a weak algorithm. This flaw enables attackers to bypass the integrity inspection mechanisms designed to protect device security. As a result, the effectiveness of security protocols on these devices can be compromised, allowing potential unauthorized access or alterations to device functionalities.

References

https://www.moxa.com/en/support/product-support/security-...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 26, 2022
Vulnerability Reserved
Jan 26, 2022