certfr_avis - CERTFR-2023-AVI-0802

CERTFR-2023-AVI-0802

Vulnerability from certfr_avis - Published: - Updated:

Une vulnérabilité a été découverte dans les produits Moxa. Elle permet à un attaquant de provoquer une atteinte à l'intégrité des données, un contournement de la politique de sécurité et une exécution de code arbitraire à distance.

L'éditeur ne propose pas de correctif pour cette vulnérabilité. Des mesures de contournement sont énoncées dans le bulletin de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Moxa	N/A	Microcode des séries NPort 5200 versions 2.12 et antérieures
Moxa	N/A	Microcode des séries NPort IA5000A (NPort IA5450A) versions 2.0 et antérieures
Moxa	N/A	Microcode des séries NPort IA5000A (NPort IA5150A/IA5250A) versions 1.5 et antérieures
Moxa	N/A	Microcode des séries NPort IA5000 (versions matérielles 2.0 et ultérieures) versions 2.1 et antérieures
Moxa	N/A	Microcode des séries NPort 5000AI-M12 versions 1.5.x et antérieures
Moxa	N/A	Microcode des séries NPort P5150A versions 1.6 et antérieures
Moxa	N/A	Microcode des séries NPort 5100A versions 1.6 et antérieures
Moxa	N/A	Microcode des séries NPort IA5000 (versions matérielles 1.x) versions 1.7 et antérieures
Moxa	N/A	Microcode des séries NPort 5100 (NPort 5130/5150 models) versions 3.10.x et antérieures
Moxa	N/A	Microcode des séries NPort IA5000A-I/O versions 2.0 et antérieures
Moxa	N/A	Microcode des séries NPort 5100 (NPort 5110 models) versions 2.10.x et antérieures
Moxa	N/A	Microcode des séries NPort 5600 versions 3.11 et antérieures
Moxa	N/A	Microcode des séries NPort 5200A versions 1.6 et antérieures
Moxa	N/A	Microcode des séries NPort 5600-DT versions 2.9 et antérieures
Moxa	N/A	Microcode des séries NPort IAW5000A-I/O versions 2.2 et antérieures
Moxa	N/A	Microcode des séries NPort 5410/5430 (révisions 2.x et antérieures) versions 2.9 et antérieures
Moxa	N/A	Microcode des séries NPort 5410/5430 (révisions 3.2 et ultérieures) et NPort 5450 (toutes révisions) versions 3.14 et antérieures

References

Title

Publication Time

Tags

Bulletin de sécurité Moxa MPSA-233328 du 03 octobre 2023

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Microcode des s\u00e9ries NPort 5200 versions 2.12 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort IA5000A (NPort IA5450A) versions 2.0 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort IA5000A (NPort IA5150A/IA5250A) versions 1.5 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort IA5000 (versions mat\u00e9rielles 2.0 et ult\u00e9rieures) versions 2.1 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5000AI-M12 versions 1.5.x et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort P5150A versions 1.6 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5100A versions 1.6 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort IA5000 (versions mat\u00e9rielles 1.x) versions 1.7 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5100 (NPort 5130/5150 models) versions 3.10.x et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort IA5000A-I/O versions 2.0 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5100 (NPort 5110 models) versions 2.10.x et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5600 versions 3.11 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5200A versions 1.6 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5600-DT versions 2.9 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort IAW5000A-I/O versions 2.2 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5410/5430 (r\u00e9visions 2.x et ant\u00e9rieures) versions 2.9 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    },
    {
      "description": "Microcode des s\u00e9ries NPort 5410/5430 (r\u00e9visions 3.2 et ult\u00e9rieures) et NPort 5450 (toutes r\u00e9visions) versions 3.14 et ant\u00e9rieures",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Moxa",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-4929",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-4929"
    }
  ],
  "links": [],
  "reference": "CERTFR-2023-AVI-0802",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-10-04T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans \u003cspan class=\"textit\"\u003eles\nproduits Moxa\u003c/span\u003e. Elle permet \u00e0 un attaquant de provoquer une\natteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es, un contournement de la politique de\ns\u00e9curit\u00e9 et une ex\u00e9cution de code arbitraire \u00e0 distance.\n\nL\u0027\u00e9diteur ne propose pas de correctif pour cette vuln\u00e9rabilit\u00e9. Des\nmesures de contournement sont \u00e9nonc\u00e9es dans le bulletin de s\u00e9curit\u00e9.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans les produits Moxa",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Moxa MPSA-233328 du 03 octobre 2023",
      "url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-233328-nport-5000-series-firmware-improper-validation-of-integrity-check-vulnerability"
    }
  ]
}

CVE-2023-4929 (GCVE-0-2023-4929)

Vulnerability from cvelistv5 – Published: 2023-10-03 13:54 – Updated: 2024-09-23 13:29

Summary

All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices.

Severity ?

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

CWE

CWE-354 - Improper Validation of Integrity Check Value

Assigner

Moxa

References

URL

Tags

https://www.moxa.com/en/support/product-support/s…

vendor-advisory

Impacted products

Vendor

Product

Version

Moxa

NPort 5000AI-M12 Series

Affected: 1.0 , ≤ 1.5 (custom)

Moxa	NPort 5100 Series	Affected: 1.0 , ≤ 3.10 (custom)
Moxa	NPort 5100A Series	Affected: 1.0 , ≤ 1.6 (custom)
Moxa	NPort 5200 Series	Affected: 1.0 , ≤ 2.12 (custom)
Moxa	NPort 5200A Series	Affected: 1.0 , ≤ 1.6 (custom)
Moxa	NPort 5400 Series	Affected: 1.0 , ≤ 3.14 (custom)
Moxa	NPort 5600 Series	Affected: 1.0 , ≤ 3.11 (custom)
Moxa	NPort 5600-DT Series	Affected: 1.0 , ≤ 2.9 (custom)
Moxa	NPort IA5000 Series	Affected: 1.0 , ≤ 2.1 (custom)
Moxa	NPort IA5000A Series	Affected: 1.0 , ≤ 2.0 (custom)
Moxa	NPort IA5000A-I/O Series	Affected: 1.0 , ≤ 2.0 (custom)
Moxa	NPort IAW5000A-I/O Series	Affected: 1.0 , ≤ 2.2 (custom)
Moxa	NPort P5150A Series	Affected: 1.0 , ≤ 1.6 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T07:44:52.628Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-233328-nport-5000-series-firmware-improper-validation-of-integrity-check-vulnerability"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_5100ai_m12:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5100ai_m12",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "1.5",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_5100:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5100",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "3.10",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:h:moxa:nport_5100a:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5100a",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "1.6",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:moxa:nport_5200_series_firmware:2.7:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5200_series_firmware",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.12",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:moxa:nport_5200a_series_firmware:1.2:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5200a_series_firmware",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.12",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_5600_series_firmware:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5600_series_firmware",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "3.11",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_5600_dt:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_5600_dt",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.9",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_ia_5000:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_ia_5000",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.1",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_ia_5000a:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_ia_5000a",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.0",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_ia_5000a_io:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_ia_5000a_io",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.0",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_iaw_5000a_io:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_iaw_5000a_io",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "2.2",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:moxa:nport_p5150a:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unaffected",
            "product": "nport_p5150a",
            "vendor": "moxa",
            "versions": [
              {
                "lessThanOrEqual": "1.6",
                "status": "affected",
                "version": "1.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-4929",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-23T13:08:12.493856Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-23T13:29:04.471Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5000AI-M12 Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "1.5",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5100 Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "3.10",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5100A Series ",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "1.6",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5200 Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "2.12",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5200A Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "1.6",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5400 Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "3.14",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5600 Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "3.11",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort 5600-DT Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "2.9",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort IA5000 Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "2.1",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort IA5000A Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "2.0",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort IA5000A-I/O Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "2.0",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort IAW5000A-I/O Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "2.2",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NPort P5150A Series",
          "vendor": "Moxa",
          "versions": [
            {
              "lessThanOrEqual": "1.6",
              "status": "affected",
              "version": "1.0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eAll firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices.\u003c/p\u003e"
            }
          ],
          "value": "All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices.\n\n"
        }
      ],
      "impacts": [
        {
          "capecId": "CAPEC-145",
          "descriptions": [
            {
              "lang": "en",
              "value": "CAPEC-145 Checksum Spoofing"
            }
          ]
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-354",
              "description": "CWE-354 Improper Validation of Integrity Check Value",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-10-03T13:54:49.293Z",
        "orgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa",
        "shortName": "Moxa"
      },
      "references": [
        {
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-233328-nport-5000-series-firmware-improper-validation-of-integrity-check-vulnerability"
        }
      ],
      "solutions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eDue to design restrictions, we could not fix this vulnerability in NPort 5000 Series. We suggest users follow the instructions in the \u003ca target=\"_blank\" rel=\"nofollow\" href=\"https://www.moxa.com/getmedia/67b5e549-a125-4a6a-b99b-23017c75cfc1/moxa-the-security-hardening-guide-for-the-nport-5000-series-tech-note-v1.1.pdf\"\u003e\u003cu\u003ehardening guide\u003c/u\u003e\u003c/a\u003e in order to mitigate this vulnerability. Additionally, refer to the following mitigation measures to deploy the product in an appropriate product security context. \u003c/p\u003e\u003cp\u003eMoxa recommends users follow these CISA recommendations. Users should \u003c/p\u003e\u003col\u003e\u003cli\u003eReduce network exposure by ensuring that all control system devices and systems are not accessible from the Internet.\u003c/li\u003e\u003cli\u003ePlace control system networks and remote devices behind firewalls, isolating them from business networks.\u003c/li\u003e\u003cli\u003eWhen remote access is necessary, employ secure methods such as Virtual Private Networks (VPNs). It is important to note that VPNs may have vulnerabilities and should be kept up to date with the latest available version. Remember that the security of a VPN depends on the security of its connected devices.\u003c/li\u003e\u003c/ol\u003e"
            }
          ],
          "value": "Due to design restrictions, we could not fix this vulnerability in NPort 5000 Series. We suggest users follow the instructions in the  hardening guide https://www.moxa.com/getmedia/67b5e549-a125-4a6a-b99b-23017c75cfc1/moxa-the-security-hardening-guide-for-the-nport-5000-series-tech-note-v1.1.pdf  in order to mitigate this vulnerability. Additionally, refer to the following mitigation measures to deploy the product in an appropriate product security context. \n\nMoxa recommends users follow these CISA recommendations. Users should \n\n  *  Reduce network exposure by ensuring that all control system devices and systems are not accessible from the Internet.\n  *  Place control system networks and remote devices behind firewalls, isolating them from business networks.\n  *  When remote access is necessary, employ secure methods such as Virtual Private Networks (VPNs). It is important to note that VPNs may have vulnerabilities and should be kept up to date with the latest available version. Remember that the security of a VPN depends on the security of its connected devices.\n"
        }
      ],
      "source": {
        "discovery": "EXTERNAL"
      },
      "title": "NPort 5000 Series Firmware Improper Validation of Integrity Check Vulnerability",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa",
    "assignerShortName": "Moxa",
    "cveId": "CVE-2023-4929",
    "datePublished": "2023-10-03T13:54:49.293Z",
    "dateReserved": "2023-09-13T01:12:13.466Z",
    "dateUpdated": "2024-09-23T13:29:04.471Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CERTFR-2023-AVI-0802

Solution

CVE-2023-4929 (GCVE-0-2023-4929)

Tags

Sightings

Nomenclature