Moxa OnCell Vulnerabilities (Update A)

CVSS 9.8 CRITICAL

CVEs (3)

CVE-2016-5799 CVE-2016-5812 CVE-2016-5819

Moxa has made firmware fixes available on their web site at the following locations: (http://www.moxa.com/support/sarch_result.aspx?type=soft&prod_id=316&type_id=4)
(http://www.moxa.com/support/sarch_result.aspx?type=soft&prod_id=416&type_id=4)
Moxa offers the following advice for upgrading firmware: The OnCell G3111/G3151-HSPA’s firmware can be upgraded though the web console, serial console, or through OnCell Search Utility. However, Moxa recommends a local (LAN) connection to the OnCell to minimize the risk of a broken connection during the upgrade process. If you have made any changes to your configuration, remember to save the configuration first before upgrading the firmware. Any unsaved changes will be discarded when the firmware is upgraded. To upgrade the firmware, simply browse to the location of the firmware on your PC, and select Submit.

Moxa

Moxa · OnCell G3100V2 Series <2.8

Moxa · OnCell G3111/G3151/G3211/G3251 Series <1.7

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.