Moxa Ethernet Switches Authentication Bypass Vulnerability Allowing Brute-Force and MD5 Collision Attacks
Vulnerability
An authentication bypass vulnerability has been identified in Moxa's Ethernet switches, specifically in the EDS-508A Series and various PT switch series, all running specific firmware versions or earlier. This vulnerability arises from flaws in the authorization mechanism, which, despite involving both client-side and back-end server verification, can be exploited by attackers. The weaknesses may allow brute-force attacks to guess valid credentials or MD5 collision attacks to forge authentication hashes, potentially compromising the security of the device.
Impact
Exploitation of this vulnerability could allow attackers to bypass authentication, perform brute-force or MD5 collision attacks, and gain unauthorized access to sensitive configurations or disrupt services.
Remediation
Users of the affected EDS-508A Series switches should contact Moxa Technical Support for the security patch. For the PT switch series, the same guidance applies.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.