Moxa UC 7408-LX-Plus Firmware Overwrite Vulnerability

CVEs (1)

Remediations

• Moxa recommends the following suggestions to reduce the risk of unauthorized access to UC 7408-LX-Plus: Strengthen authentication requirements: Change passwords for administrative users periodically. Use the stronger password. Ex: mixed with upper and lower case character and number. Disable or delete unused profiles from system. Provide login authentication at all access portals before accessing this device ex: console, ssh, web. Disable unnecessary services. Enable system log for monitoring. Log unsuccessful login attempts.
• Auto log out from ssh or telnet console after a period of inactivity. Increase access control: Restrict mobile code download and execution. Limit the number of concurrent sessions. Ex: SSH is limited to 5. Log the access control information with timestamps for audit purpose. Enhance data integrity: Use secure transmission protocol, SSH, VPN, HTTPS, etc., to protect integrity of information. Enhance data confidentiality: Remove the shared data if the shared resource is not used. Restrict data flow: Enable firewall function for deny all accept exception rule.

Affected Vendors

Affected Products (1)