Moxa EDR-810 Industrial Secure Routers

Carlos Pacho of Cisco Talos discovered several vulnerabilities that exist in the Moxa EDR-810 industrial secure router used for remote management of critical infrastructure systems. The flaws – which include weak cryptography, passwords stored in plaintext, denial-of-service vulnerabilities, and an exploitable command injection – could be leveraged by threat actors to escalate privileges, intercept administrative account credentials, render the server offline, or gain complete control over the target device. Moxa EDR-810 V4.1 build 17030317 is impacted by the disclosed vulnerabilities; however, previous versions may also be affected. The NJCCIC recommends users and administrators of Moxa EDR-810 industrial secure routers update to firmware version V4.2 Build 18041013 as soon as possible.

AdvisoryNJCCICMoxa, Router, WiFi