Vulnerability Description
A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Moxa | Edr-G903 Firmware | < 5.7.21 |
| Moxa | Edr-G903 | - |
| Moxa | Edr-G903-T Firmware | < 5.7.21 |
| Moxa | Edr-G903-T | - |
| Moxa | Edr-G902 Firmware | < 5.7.21 |
| Moxa | Edr-G902 | - |
| Moxa | Edr-G902-T Firmware | < 5.7.21 |
| Moxa | Edr-G902-T | - |
| Moxa | Edr-810-Vpn-2Gsfp Firmware | < 5.12.29 |
| Moxa | Edr-810-Vpn-2Gsfp | - |
| Moxa | Edr-810-Vpn-2Gsfp-T Firmware | < 5.12.29 |
| Moxa | Edr-810-Vpn-2Gsfp-T | - |
| Moxa | Edr-810-2Gsfp Firmware | < 5.12.29 |
| Moxa | Edr-810-2Gsfp | - |
| Moxa | Edr-810-2Gsfp-T Firmware | < 5.12.29 |
| Moxa | Edr-810-2Gsfp-T | - |
Related Weaknesses (CWE)
References
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-234880-edVendor Advisory
- https://www.moxa.com/en/support/product-support/security-advisory/mpsa-234880-edVendor Advisory
FAQ
What is CVE-2023-4452?
CVE-2023-4452 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input vali...
How severe is CVE-2023-4452?
CVE-2023-4452 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-4452?
Check the references section above for vendor advisories and patch information. Affected products include: Moxa Edr-G903 Firmware, Moxa Edr-G903, Moxa Edr-G903-T Firmware, Moxa Edr-G903-T, Moxa Edr-G902 Firmware.