Moxa EDR-G903 series routers with firmware before 2.11 have a hardcoded account, which allows remote attackers to obtain unspecified device access via unknown vectors.
References
Link | Resource |
---|---|
http://ics-cert.us-cert.gov/pdf/ICSA-13-042-01.pdf | Broken Link Third Party Advisory US Government Resource |
http://www.moxa.com/support/download.aspx?type=support&id=492 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
12 Apr 2022, 16:51
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) http://www.moxa.com/support/download.aspx?type=support&id=492 - Vendor Advisory | |
References | (MISC) http://ics-cert.us-cert.gov/pdf/ICSA-13-042-01.pdf - Broken Link, Third Party Advisory, US Government Resource | |
CWE | CWE-798 | |
CPE | cpe:2.3:o:moxa:edr_g903_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:edr_g903_firmware:2.1:*:*:*:*:*:*:* cpe:2.3:o:moxa:edr_g903_firmware:2.0:*:*:*:*:*:*:* |
cpe:2.3:o:moxa:edr-g903_firmware:*:*:*:*:*:*:*:* |
First Time |
Moxa edr-g903 Firmware
|
Information
Published : 2013-02-15 12:09
Updated : 2023-12-10 11:16
NVD link : CVE-2012-4712
Mitre link : CVE-2012-4712
CVE.ORG link : CVE-2012-4712
JSON object : View
Products Affected
moxa
- edr-g903
- edr-g903_firmware
CWE
CWE-798
Use of Hard-coded Credentials