Cross-site request forgery in Moxa EDR-810

#VU11875 Cross-site request forgery in Moxa EDR-810

Published: 2018-04-18

Vulnerability identifier: #VU11875

Vulnerability risk: Low

CVSSv3.1:

CVE-ID: CVE-2017-12126

CWE-ID: CWE-352

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Moxa EDR-810
Server applications / SCADA systems

Vendor: Moxa

Description
The vulnerability allows a remote attacker to conduct cross-site request forgery attack and gain elevated privileges on the target system.

The weakness exists in the web server functionality due to insufficient CSRF protections. A remote attacker can submit a specially crafted HTML and gain root prvileges.

Mitigation
Update to version 4.2.

Vulnerable software versions

Moxa EDR-810: 4.1

CPE

cpe:2.3:a:moxa:moxa_edr-810:4.1:*:*:*:*:*:*:*

External links
http://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0478

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Multiple vulnerabilities in Moxa EDR-810