CVE-2019-6522

EPSS 2.5%CWE-125

Moxa IKS and EDS fails to properly check array bounds which may allow an attacker to read device memory on arbitrary addresses, and may allow an attacker to retrieve sensitive data or cause device reboot.

Productos afectados

ICS-CERT · Moxa IKS, EDS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01 http://www.securityfocus.com/bid/107178