Affected Products:
The affected products and firmware versions are shown below.
Product Series |
Affected Versions |
NPort 5110 Series |
Only Firmware Version 2.10 is affected.
CVE-2022-2044, CVE-2022-2043
|
NPort 5200A Series |
Firmware Version 1.6 and prior
CVE-2022-2044
|
Solutions:
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below.
Acknowledgment:
We would like to express our appreciation to Jens Nielsen from En Garde Security for reporting the vulnerability, working with us to help enhance the security of our products, and helping us provide a better service to our customers.
Revision History:
VERSION |
DESCRIPTION |
RELEASE DATE |
1.0 |
First Release |
June 10, 2022 |
1.1 |
Added Reference:
- ICSRange, Two Moxa Zerodays
- CISA, ICSA-22-207-04
|
July 28, 2022 |
1.2 |
Add NPort 5200A Series and CVE ID |
July 31, 2023 |