In May 2017, researchers announced a vulnerability whereby an attacker who should not have access to a network could gain system privileges to provision Intel manageability SKUs and a local attacker could then provision manageability features to gain network or local system privileges on Intel manageability SKUs.
In the second half of 2017, researchers identified multiple vulnerabilities that are related to the Intel Management Engine.
In response to these vulnerabilities, Intel released a patch management engine firmware for all its platforms. Moxa has identified which of our products have been affected and issued a firmware upgrade. Any products that are not listed will not be affected by the aforementioned vulnerabilities. We recommend that people who have purchased the affected products get assistance through Moxa Global Customer Service and update to the latest BIOS.