Hi! Please sign in Home >  Support > Technical FAQs

Technical FAQs
Question Moxa’s Response Regarding Libssh Authentication Bypass Vulnerability
Question Type Security Advisory
Updated 11/27/2018 7:49:38 PM
Hits 1
Products
Suggestions

Summary

Version: 1.0
Reference: CVE-2018-10933

A vulnerability has been found in libssh’s server-side state machine in versions 0.7.6 and 0.8.4 and prior. This vulnerability (CVE-2018-10933) is due to improper authentication operation and it allows a remote attacker to bypass authentication on the target system.

After checking our products for this vulnerability, we have concluded that none of our products have been affected by this vulnerability.

Moxa's Cyber Security Response Team (CSRT) is fully engaged in this matter and we are taking appropriate action. If there are any updates to the status of the vulnerabilities or how these affect Moxa's products, we will provide an update immediately.

Affected Products and Solutions

* Affected Products
Moxa has investigated our products and so far has not found any products that are affected by this vulnerability.

Revision History

Version Description Release Date
1.0 First release November 27, 2018
Related Questions
Provide Feedback
Quality of this article
Poor                Excellent