ICSA-20-063-04 · Published 2020-03-03 · View on CISA ICS-CERT ↗

Moxa AWK-3131A Series Industrial AP/Bridge/Client

CVSS 9.9 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could allow an attacker to gain control of the device and remotely execute arbitrary code.

CVEs (12)

CVE-2019-5136 CVE-2019-5137 CVE-2019-5138 CVE-2019-5139 CVE-2019-5140 CVE-2019-5141 CVE-2019-5142 CVE-2019-5143 CVE-2019-5148 CVE-2019-5153 CVE-2019-5162 CVE-2019-5165

Remediations

Moxa has created a security patch to mitigate these vulnerabilities. Please contact Moxa technical support to obtain it. For additional information see the Moxa advisory.

Affected Vendors

Moxa

Affected Products (1)

Moxa · Moxa AWK-3131A <= 1.13

Affected Sectors

Critical Manufacturing, Energy, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more