Web Server Buffer Overflow Vulnerability
CVE-2023-4452

6.5MEDIUM

Key Information:

Vendor: Moxa
Status: Edr-810 Series; Edr G902 Series; Edr G903 Series
Vendor: CVE Published:; 1 November 2023

Summary

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot.

Affected Version(s)

EDR G902 Series 1.0 <= 5.7.20

EDR G903 Series 1.0 <= 5.7.20

EDR-810 Series 1.0 <= 5.12.28

References

https://www.moxa.com/en/support/product-support/security-...

vendor-advisory

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 1, 2023
Vulnerability Reserved
Aug 21, 2023

Credit

Zhiyuan Chen