Vulnerabilities > CVE-2019-19707 - Unspecified vulnerability in Moxa products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

moxa

NVD

Published: 2019-12-11

Updated: 2019-12-17

Summary

On Moxa EDS-G508E, EDS-G512E, and EDS-G516E devices (with firmware through 6.0), denial of service can occur via PROFINET DCE-RPC endpoint discovery packets.

Vulnerable Configurations

Part	Description	Count
OS	Moxa Moxa EDS G508E Firmware - Moxa EDS G508E Firmware 6.0 Moxa EDS G512E Firmware - Moxa EDS G512E Firmware 5.1 Moxa EDS G512E Firmware 6.0 Moxa EDS G516E Firmware - Moxa EDS G516E Firmware 5.2 Moxa EDS G516E Firmware 6.0	8
Hardware	Moxa Moxa EDS G508E - Moxa EDS G512E - Moxa EDS G516E -	3

References

https://www.moxa.com/en/support/support/security-advisory/eds-g508e-g512e-g516e-series-ethernet-switches-vulnerabilities