Moxa Notifies Users of Serious Flaws in Secure and Cellular Routers
Two security flaws that potentially permit privilege escalation and command execution have been identified by Taiwan-based Moxa as affecting its network security appliances, secure routers, and cellular routers.
Two security flaws that potentially permit privilege escalation and command execution have been identified by Taiwan-based Moxa as affecting its network security appliances, secure routers, and cellular routers.
The following is a list of vulnerabilities:
An authenticated user may be able to escalate privileges and obtain root-level access to the system through the hard-coded credentials vulnerability CVE-2024-9138 (CVSS 4.0 score: 8.6), which might result in system compromise, unauthorized changes, data exposure, or service interruption.
CVE-2024-9140 (CVSS 4.0 score: 9.3): This vulnerability enables attackers to circumvent input constraints by using special characters, which could result in the execution of commands without authorization.
According to security researcher Lars Haulin, the following products and firmware versions are impacted by the flaws:
CVE-2024-9138 - EDR-810 Series (Firmware version 5.12.37 and earlier), EDR-8010 Series (Firmware version 3.13.1 and earlier), EDR-G902 Series (Firmware version 5.7.25 and earlier), EDR-G9004 Series (Firmware version 3.13.1 and earlier), EDR-G9010 Series (Firmware version 3.13.1 and earlier), EDF-G1002-BP Series (Firmware version 3.13.1 and earlier), NAT-102 Series (Firmware version 1.0.5 and earlier), OnCell G4302-LTE4 Series (Firmware version 3.13 and earlier), and TN-4900 Series (Firmware version 3.13 and earlier).
CVE-2024-9140 - EDR-8010 Series (version 3.13.1 and earlier), EDR-G9004 Series (version 3.13.1 and earlier), EDR-G9010 Series (version 3.13.1 and earlier), EDF-G1002-BP Series (version 3.13.1 and earlier), NAT-102 Series (version 1.0.5 and earlier), OnCell G4302-LTE4 Series (version 3.13 and earlier), and TN-4900 Series (version 3.13 and earlier)
The following versions now have accessible patches:
Upgrade to firmware version 3.14 or higher for the EDR-810 series.
Upgrade to firmware version 3.14 or higher for the EDR-8010 series.
Upgrade to firmware version 3.14 or higher for the EDR-G902 series.
Upgrade to firmware version 3.14 or higher for the EDR-G903 series.
Upgrade to firmware version 3.14 or higher for the EDR-G9004 series.
Upgrade to firmware version 3.14 or higher for the EDR-G9010 series.
Series EDF-G1002-BP (Update to firmware 3.14 or higher)
No official patch is available for the NAT-102 Series.
Please get in touch with Moxa Technical Support regarding the OnCell G4302-LTE4 Series.
Please get in touch with Moxa Technical Support regarding the TN-4900 Series.
It is advised that devices not be connected to the internet, that SSH access be restricted to trustworthy IP addresses and networks via firewall rules or TCP wrappers, and that procedures be put in place to identify and stop attempts at exploitation.
