The affected products and firmware versions are shown below.
Firmware version v3.3 and prior versions
CVE-2023-33237, CVE-2023-33238, CVE-2023-33239, CVE-2023-34213, CVE-2023-34214, CVE-2023-34215, CVE-2023-34216, CVE-2023-34217
Firmware version v1.2.4 and prior versions
CVE-2023-33238, CVE-2023-33239, CVE-2023-34214, CVE-2023-34216, CVE-2023-34217
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for the affected products are shown below.
Minimize network exposure to ensure the device is not accessible from the Internet.
When remote access is required, use secure methods, such as Virtual Private Networks (VPNs).
Products Confirmed Not Vulnerable:
Only products listed in the Affected Products section of this advisory are known to be affected by this vulnerability.
We would like to express our appreciation to Simon Janz of CODE WHITE GmbH for reporting the vulnerability, working with us to help enhance the security of our products, and helping us provide a better service to our customers.
||Aug. 16, 2023
||Update Solution for TN-4900 Series
||Sept. 4, 2023