Discover how our IIoT edge gateways use cloud services to simplify the integration of edge data.
Explore our article library for a wealth of expert advice on improving your industrial network security.
Learn how to unlock the secrets of your OT data to succeed with your industrial digital transformation.
Still need assistance with your Moxa product?
We strive to implement environmental practices that have a positive impact.
Bringing out the best in our people is how we grow and succeed together.
Sudo is a utility included in many Linux-based operating systems that allows a user to run programs with the security privileges of another user. A Heap-based buffer overflow vulnerability has been found on Sudo versions 1.8.2 through 1.8.31p2 and 1.9.0 through 1.9.5p1. An attacker could exploit this vulnerability to take control of an affected system.
Moxa's Cyber Security Response Team (CSRT) is fully engaged in this matter and we are taking appropriate action. If there are any updates to the status of the vulnerabilities or how these affect Moxa's products, we will provide an update immediately.
The affected products and firmware versions are shown below.
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below.
root@Linux:~$ apt-get update
root@Linux:~$ apt-get install sudo
root@Linux:~$ vi /etc/apt/sources.list.d/moxa.sources.list
root@Linux:~$ dpkg -i <deb file name>
root@Linux:~$ dpkg -i sudo_1.8.19p1-2.1+deb9u3_armhf.deb
DA-681A Series ·
DA-681C Series ·
DA-682C Series ·
DA-720 Series ·
DA-820C Series ·
ioThinx 4530 Series ·
MC-1100 Series ·
MC-1200 Series ·
MPC-2070 Series ·
MPC-2101 Series ·
MPC-2120 Series ·
MPC-2121 Series ·
UC-2100 Series ·
UC-2100-W Series ·
UC-3100 Series ·
UC-5100 Series ·
UC-8100 Series ·
UC-8100A-ME-T Series ·
UC-8100-ME-T Series ·
UC-8200 Series ·
UC-8410A Series ·
UC-8540 Series ·
UC-8580 Series ·
V2201 Series ·
V2403 Series ·
V2406A Series ·
V2406C Series ·
V2416A Series ·
V2426A Series ·
V2616A Series ·
If you are concerned about a potential cybersecurity vulnerability, please contact us and one of technical support staff will get in touch with you.
You are currently on the Global / English site.
Would you like to go to the site for your region?