Web Server Buffer Overflow Vulnerability

CVE-2023-4452

6.5MEDIUM

Key Information

Vendor: Moxa
Status: Edr-810 Series; Edr G902 Series; Edr G903 Series
Vendor: CVE Published:; 1 November 2023

Summary

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot.

Affected Version(s)

EDR-810 Series <= 5.12.28

EDR G902 Series <= 5.7.20

EDR G903 Series <= 5.7.20

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Risk change from: 7.5 to: 6.5 - (MEDIUM)
Sep 6, 2024
Vulnerability published.
Nov 1, 2023
Vulnerability Reserved.
Aug 21, 2023

Collectors

NVD DatabaseMitre Database

Credit

Zhiyuan Chen