Security News > 2020 > February > Vulnerabilities in Moxa Networking Device Expose Industrial Environments to Attacks

Vulnerabilities in Moxa Networking Device Expose Industrial Environments to Attacks
2020-02-24 17:30

Researchers from Cisco's Talos intelligence and research group have identified a dozen vulnerabilities in a wireless networking device made by Taiwan-based industrial networking, computing and automation solutions provider Moxa.

According to advisories published on Monday by both Moxa and Talos, AWK-3131A industrial AP/bridge/client devices are affected by 12 vulnerabilities that can be exploited to carry out malicious activities in an attack aimed at an organization's industrial systems.

While Moxa patched these flaws fairly quickly, the company has not always been fast when it comes to addressing vulnerabilities.

In December, the company urged customers to replace the discontinued AWK-3121 series AP after a researcher had identified 14 vulnerabilities in the device.

Back in 2017, they reported finding hardcoded credentials that gave attackers full access to Moxa APs, and separately disclosed more than a dozen vulnerabilities affecting the same product.


News URL

http://feedproxy.google.com/~r/Securityweek/~3/HzpmksBsz4Y/vulnerabilities-moxa-networking-device-expose-industrial-environments-attacks

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Moxa 451 2 53 152 67 274