As of June 15, 2022, this site no longer supports Internet Explorer. Please use another browser for the best experience on our site.

Product support

Security Advisories


CN2600 Series Multiple Weak Cryptographic Algorithm Vulnerabilities

  • Security Advisory ID: MPSA-230501
  • Version: V1.0
  • Release Date: Jun 05, 2023

The following vulnerability affects the CN2600 Series. An attacker may compromise the connections and leak sensitive information.  

The identified vulnerability types and potential impacts are shown below:

Item Vulnerability Type Impact

Weak cryptographic algorithm 

(CWE-327: Use of a Broken or Risky Cryptographic Algorithm) 

An attacker may bypass authentication, steal keys, and reduce the integrity capability that provides for remote connections. 

Affected Products:

The affected products and firmware versions are shown below.

Product Series Affected Versions
CN2600 Series  Firmware version 4.5 and lower. 



Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below.

Product Series Solutions
CN2600 Series  Please contact Moxa Technical Support for the security patch.



Moxa recommends users follow CISA recommendations. Users should: 

  1. Reduce network exposure by ensuring that all control system devices and systems are not accessible from the Internet. 

  1. Place control system networks and remote devices behind firewalls, isolating them from business networks. 

  1. When remote access is necessary, employ secure methods such as Virtual Private Networks (VPNs). It is important to note that VPNs may have vulnerabilities and should be kept up to date with the latest available version. Remember that the security of a VPN depends on the security of its connected devices. 


Revision History:

1.0 First Release June 5, 2023

Relevant Products

CN2600 Series ·

  •   Print this page
  • You can manage and share your saved list in My Moxa
Let’s get that fixed

If you are concerned about a potential cybersecurity vulnerability, please contact us and one of technical support staff will get in touch with you.

Report a Vulnerability
Added To Bag
You have some items waiting in your bag; click here to finish your quote!