A series of high-risk vulnerabilities has been found in the TCP/IP software library developed by Treck, Inc. These 19 vulnerabilities, labeled Ripple20, can be exploited to perform remote code execution, out-of-bounds read/write, denial-of-service (DoS) attacks, and potentially expose sensitive information. The detailed information can be found on this website: https://www.jsof-tech.com/ripple20/ and CISA’s ICS Advisory: ICSA-20-168-01.
Moxa has investigated this vulnerability and has determined that none of our products are affected.
Moxa's Cyber Security Response Team (CSRT) will keep monitoring the situation and if there are any updates to the status of the vulnerability that affects Moxa's products, an update will be provided immediately.