ICSA-13-217-01
·
Published 2025-06-06
·
View on CISA ICS-CERT ↗
MOXA Weak Entropy in DSA Keys Vulnerability
CVSS 7.1
HIGH
CVEs (1)
Remediations
- Moxa released a firmware upgrade (OnCell G3111/G3151/G3211/G3251 Version 1.4) for these products on April 3, 2013, and is currently in the process of sending notification to its customers. This upgrade can be downloaded from the Moxa software download page at the following link: (http://www.moxa.com/support/download.aspx?type=support&id=222). The firmware upgrade fixes the vulnerability by increasing the entropy in the dynamically generated keys to avoid nonuniqueness and key reuse.
Affected Vendors
MOXA
Affected Products (4)
MOXA
·
OnCell Gateway models G3111
<firmware_1.4
MOXA
·
OnCell Gateway models G3151
<firmware_1.4
MOXA
·
OnCell Gateway models G3211
<firmware_1.4
MOXA
·
OnCell Gateway models G3251
<firmware_1.4
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more