Product support

Security Advisories

SUMMARY

EDR-810 Series Secure Router Vulnerability

  • Advisory ID: MCSA-180901
  • Version: 1.0
  • Release Date: Sep 21, 2018
  • Reference:
    • CVE-2018-16282

A product vulnerability was identified in Moxa’s EDR-810 Series Secure Router. In response to this, Moxa has developed related solutions to address this vulnerability.

The identified vulnerability type and potential impact are shown below:

Item Vulnerability Type Impact
1 A command injection vulnerability in the web server function The application allows remote attackers to execute arbitrary OS commands with root privilege via the CA name parameter to the /xml/net_WebCADELETEGetValue URI.
AFFECTED PRODUCTS AND SOLUTIONS

Affected Products

The affected product and firmware versions are shown below.

Product Series Affected Version
EDR-810 Series Firmware Version 4.2 or prior

 

Solutions

Moxa has developed appropriate solution to address the vulnerability. The solution for affected product is shown below.

Product Series Solutions
EDR-810 Series Please download the new firmware/software here.

 

Revision History

Version Description Release Date
1.0 First Release Sep 21, 2018

Relevant Products

EDR-810 Series ·

  •   Print this page
  • You can manage and share your saved list in My Moxa
Let’s Get That Fixed

If you are concerned about a potential cybersecurity vulnerability, please contact us and one of technical support staff will get in touch with you.

Report a Vulnerability
Added To Bag