Affected Products:
The affected products and firmware versions are shown below.
Product Series |
Affected Versions |
NPort IAW5000A-I/O Series |
Firmware Version 1.2 or lower. |
Solutions:
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below.
Product Series |
Solutions |
NPort IAW5000A-I/O Series |
Items 1 and 2: The old firmware v1.2 is not available to download from moxa.com. And for security reasons, we strongly recommend that you only download firmware v2.2 (Download Link) or higher from moxa.com directly or other trusted sources.
Item 3: Please upgrade to firmware version 2.2 or higher. (Download Link) |
Acknowledgment:
We would like to express our appreciation to Ilya Karpov, Konstantin Kondratev, and Evgeniy Druzhinin of Rostelecom-Solar for reporting the vulnerability, working with us to help enhance the security of our products, and helping us provide a better service to our customers.
Revision History:
VERSION |
DESCRIPTION |
RELEASE DATE |
1.0 |
First Release |
Nov 23, 2021 |