Moxa ioLogik 2542-HSPA Series Controllers and IOs, and IOxpress Configuration Utility

CVSS 7.5 HIGH

Risk Summary

Successful exploitation of these vulnerabilities could crash the device or allow access to sensitive information.

CVE-2019-18238 CVE-2020-7003 CVE-2019-18242

Moxa has developed a solution to address these vulnerabilities: Please contact Moxa Technical Support for a security patch.
Please see Moxa's security advisory for more information.

Moxa

Moxa · IOxpress configuration utility <= 2.3.0

Moxa · ioLogik 2500 series <= 3.0

Critical Manufacturing, Energy, Water and Wastewater Systems

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.