Moxa Alerts on Vulnerabilities in Industrial Networking Devices
/ 1 min read
🔐 Moxa warns of critical vulnerabilities in industrial networking devices. Moxa has issued an urgent alert regarding two severe vulnerabilities affecting its cellular and secure routers, which could allow remote attackers to gain root access and execute arbitrary commands. The vulnerabilities, identified as CVE-2024-9138 and CVE-2024-9140, have severity scores of 8.6 and 9.3, respectively. Affected devices include various models in the EDR, EDF, NAT, and OnCell series, with firmware versions 3.13.1 and earlier being particularly at risk. Moxa recommends immediate firmware updates and suggests additional security measures, such as limiting network exposure and using firewalls, to mitigate potential exploitation. Notably, certain device series are confirmed to be unaffected by these vulnerabilities.
