Authentication Bypass Vulnerability in Moxa Ethernet Switch EDS-508A Series
CVE-2024-12297

9.2CRITICAL

Key Information:

Vendor
Moxa
Status
Eds-508a Series
Pt-508 Series
Pt-510 Series
Pt-7528 Series
Vendor
CVE Published:
15 January 2025

Badges

πŸ“ˆ TrendedπŸ“ˆ Score: 5,950πŸ“° News Worthy

What is CVE-2024-12297?

CVE-2024-12297 identifies a critical authentication bypass vulnerability in the Moxa Ethernet Switch EDS-508A Series, which are designed for reliable communication in industrial networking environments. This vulnerability arises from flaws in the device's authorization mechanism, allowing attackers to potentially bypass authentication processes. Organizations utilizing these switches may face significant security risks, as successful exploitation could permit unauthorized access to the network, leading to adverse operational implications and potential compromises of sensitive information.

Technical Details

The vulnerability is rooted in the implementation weaknesses present in both the client-side and back-end server verification processes of the Moxa Ethernet switch. These weaknesses facilitate brute-force attacks, where attackers could guess valid credentials, or MD5 collision attacks, enabling them to forge authentication hashes. Essentially, this exploitation could undermine the integrity of security mechanisms that protect the device from unauthorized access.

Potential Impact of CVE-2024-12297

  1. Unauthorized Access: Exploiters can gain unauthorized control over the network devices, leading to manipulation of network traffic, configuration changes, or data interception.

  2. Compromise of Network Integrity: Successful authentication bypass may allow threat actors to implement further attacks within the network, potentially leading to broader disruptions or targeting of additional systems.

  3. Operational Disruptions: With unauthorized access, attackers can interfere with operational processes, which is particularly concerning in industrial environments where system availability is crucial for maintaining production efficiency and safety.

Affected Version(s)

EDS-508A Series 1.0 <= 3.11

PT-508 Series 1.0 <= 3.8

PT-510 Series 1.0 <= 3.8

News Articles

favicon imageThe Hacker News

Moxa Issues Fix for Critical Authentication Bypass Vulnerability in PT Switches

Moxa fixes CVE-2024-12297, a critical PT switch flaw (CVSS 9.2) enabling authentication bypass. Users must update firmware or apply mitigation steps.

References

https://www.moxa.com/en/support/product-support/security-...
vendor-advisory
https://www.moxa.com/en/support/product-support/security-...
vendor-advisory

CVSS V4

Score:
9.2
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • πŸ“ˆ

    Vulnerability started trending

  • πŸ“°

    First article discovered by The Hacker News

  • Vulnerability published

  • Vulnerability Reserved

Credit

Artem Turyshev from Rosatom Automated Control Systems Joint-Stock Company
.