#VU17865 Improper access control in Moxa IKS-G6824A - CVE-2019-6520

Cybersecurity Help s.r.o.

Published: 2019-02-26

Vulnerability identifier: #VU17865

Vulnerability risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-6520

CWE-ID: CWE-284

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
Moxa IKS-G6824A
Server applications / SCADA systems

Vendor: Moxa

Description

The vulnerability allows a remote attacker to gain unauthorized access to sensitive information.

The vulnerability exists due to improper access restrictions in web interface. A remote attacker can gain unauthorized access to sensitive information.

Mitigation
Request updates from vendor's technical support.

Vulnerable software versions

Moxa IKS-G6824A: 4.5

External links
https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01
https://www.moxa.com/en/support/product-support/security-advisory/eds-405a-series-eds-408a-series-ed...

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in Moxa IKS and EDS industrial switches