Multiple product vulnerabilities were identified in Moxa’s EDS-G508E Series, EDS-G512E Series, and EDS-G516E Series Ethernet Switch. In response to this, Moxa has developed related solutions to address these vulnerabilities.
The identified vulnerability types and potential impacts are shown below:
Item |
Vulnerability Type |
Impact |
1 |
Denial of Service |
An attacker could remotely manipulate the session ID and disrupt the network communications of Moxa's switch. |
2 |
Cookie Management |
Cookies are not secured against being reused |
3 |
Cross-Site Scripting Attack |
An attacker could use these flaws to insert a malicious code on to the users' browser or on to the switch. |