ICSA-21-278-03 · Published 2021-10-05 · View on CISA ICS-CERT ↗

Moxa MXview Network Management Software

CVSS 10.0 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities may allow an attacker to create or overwrite critical files to execute code, gain access to the program, obtain credentials, disable the software, read and modify otherwise inaccessible data, allow remote connections to internal communication channels, or interact and use MQTT remotely.

CVEs (5)

CVE-2021-38452 CVE-2021-38456 CVE-2021-38460 CVE-2021-38458 CVE-2021-38454

Remediations

Upgrade to software package v3.2.4 or higher.
Users should change their Windows password regularly and use a firewall.
If users need to use a multiple-site function, Moxa recommends a firewall to block Port 8883. If users do not have this requirement, Moxa suggests using the firewall to assign the Accessible IP of MXview at the client site.

Affected Vendors

Moxa

Affected Products (1)

Moxa · MXview Network Management Software >= 3.x | <= 3.2.2

Affected Sectors

Critical Manufacturing, Energy, Transportation Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more