Vulnerabilities > CVE-2019-9097 - Unspecified vulnerability in Moxa products

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

network

low complexity

moxa

NVD

Published: 2020-03-11

Updated: 2020-03-17

Summary

An issue was discovered on Moxa MGate MB3170 and MB3270 devices before 4.1, MB3280 and MB3480 devices before 3.1, MB3660 devices before 2.3, and MB3180 devices before 2.1. A high rate of transit traffic may cause a low-memory condition and a denial of service.

Vulnerable Configurations

Part	Description	Count
OS	Moxa Moxa Mb3170 Firmware 4.0 Moxa Mb3270 Firmware 4.0 Moxa Mb3180 Firmware 2.0 Moxa Mb3280 Firmware 3.0 Moxa Mb3480 Firmware 3.0 Moxa Mb3660 Firmware 2.2	6
Hardware	Moxa Moxa Mb3170 - Moxa Mb3270 - Moxa Mb3180 - Moxa Mb3280 - Moxa Mb3480 - Moxa Mb3660 -	6

References

https://www.us-cert.gov/ics/advisories/icsa-20-056-01
https://www.moxa.com/en/support/support/security-advisory/mb3710-3180-3270-3280-3480-3660-vulnerabilities