As of June 15, 2022, this site no longer supports Internet Explorer. Please use another browser for the best experience on our site.

Product support

Security Advisories

SUMMARY

MXview Series Network Management Software Vulnerability

  • Security Advisory ID: MPSA-180302
  • Version: 1.0
  • Release Date: Mar 13, 2018
  • Reference:
    • CVE-2017-14030

A product vulnerability was identified in Moxa’s MXview Series Network Management Software. In response to this, Moxa has developed related solution to address this vulnerability.

The identified vulnerability type and potential impact are shown below:

Item Vulnerability Type Impact
1

Unquoted search path or element (CWE-428), CVE-2017-14030

The unquoted service path escalation vulnerability could allow an authorized user with file access to escalate privileges by inserting arbitrary code into the unquoted service path.
AFFECTED PRODUCTS AND SOLUTIONS

Affected Products

The affected products and firmware versions are shown below.

Product Series Affected Version
MXview Series Software Version 2.8 or prior

 

Solutions

Moxa has developed an appropriate solution to address the vulnerability. The solutions for affected products are shown below.

Product Series Solutions
MXview Series Please download the new firmware/software here.

 

Revision History

Version Description Release Date
1.0 First Release Mar 13, 2018

Relevant Products

MXview Series ·

  •   Print this page
  • You can manage and share your saved list in My Moxa
Let’s get that fixed

If you are concerned about a potential cybersecurity vulnerability, please contact us and one of technical support staff will get in touch with you.

Report a Vulnerability
Added To Bag
You have some items waiting in your bag; click here to finish your quote!
Feedback