ICSA-19-337-02 · Published 2019-12-03 · View on CISA ICS-CERT ↗

Moxa AWK-3121

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to view sensitive information, cause availability issues, and execute remote code.

CVEs (14)

CVE-2018-10690 CVE-2018-10691 CVE-2018-10692 CVE-2018-10693 CVE-2018-10694 CVE-2018-10695 CVE-2018-10696 CVE-2018-10697 CVE-2018-10698 CVE-2018-10699 CVE-2018-10700 CVE-2018-10701 CVE-2018-10702 CVE-2018-10703

Remediations

Moxa notes this device has reached end of life and has been replaced by model AWK-1131A (see Moxa bulletin). Moxa recommends users apply the latest security patch, which can be obtained by contacting customer service at the following link:
For additional information see the Moxa advisory.

Affected Vendors

Moxa

Affected Products (1)

Moxa · AWK-3121 <= 1.14

Affected Sectors

Critical Manufacturing, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more