Affected Products:
The affected products and firmware versions are shown below.
Product Series |
Affected Versions |
EDR-810 Series |
Firmware Version 5.9 or lower. |
EDR-G902 Series |
Firmware Version 5.6 or lower. |
EDR-G903 Series |
Firmware Version 5.6 or lower. |
Solutions:
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below.
Product Series |
Solutions |
EDR-810 Series |
Please upgrade to firmware version 5.10 or higher. (Download Link) |
EDR-G902 Series |
Please upgrade to firmware version 5.7 or higher. (Download Link) |
EDR-G903 Series |
Please upgrade to firmware version 5.7 or higher. (Download Link). |
Mitigations:
If a customer cannot upgrade to the new firmware immediately, they can consider performing the following mitigation to reduce the risk:
- Enable the “Trusted Access” feature to enhance the authentication mechanism and only allow authorized remote access to the device
Revision History:
VERSION |
DESCRIPTION |
RELEASE DATE |
1.0 |
First Release |
Feb 11, 2022 |