Hi! Please sign in Home >  Support > Technical FAQs

Technical FAQs
Question Moxa Statement Regarding ICSA-16-145-01 Advisory on MiiNePort Products
Question Type Security Advisory
Updated 9/5/2017 12:18:25 PM
Hits 1
Products
Suggestions

On May 20, 2016, Moxa was contacted by ICS-CERT regarding reported security vulnerabilities of the Moxa MiiNePort E1/E2/E3 serial device servers. The following day, ICS-CERT published Advisory ICSA-16-145-01 describing the reported vulnerabilities and potential security risks of each. The three reported vulnerabilities are:

Moxa's Cybersecurity Taskforce is fully engaged in this matter and we are taking appropriate action. Our team has been working closely with ICS-CERT to replicate the reported issues, perform a detailed investigation, and responsibly support mitigation and remediation activities.

Mitigation
For a short-term solution, Moxa recommends implementing these mitigating measures:

For a long-term solution, Moxa plans to release patch firmware as scheduled below.
Product Patch Plan

Related Questions
Provide Feedback
Quality of this article
Poor                Excellent