MOXA EDR-G903 Series Multiple Vulnerabilities

CVSS 7.6 HIGH

CVEs (2)

CVE-2012-4694 CVE-2012-4712

Moxa has released customer notification and a firmware update (Moxa EDR-G903 Series Version 2.11) for this product. This update can be downloaded from the Moxa software download page. (http://www.moxa.com/support/download.aspx?type=support&id=492) This updated firmware fixes the vulnerabilities by replacing the hard-coded SSH/SSL key with dynamically-generated keys and adding support for special characters in login passwords.

Moxa

Moxa · EDR-G903 series routers vers:all/*

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.