CVE-2023-4452 MEDIUM

CVE-2023-4452: Web Server Buffer Overflow Vulnerability

Vendor Moxa
Product EDR-810 Series
Weakness CWE-120
Published November 1, 2023
Last update September 6, 2024

CVSS base score

6.5/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

What the vulnerability does

01Description

A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability. This vulnerability stems from insufficient input validation in the URI, potentially enabling malicious users to trigger the device reboot.

Key dates

02Disclosure timeline

November 1, 2023 CVE published
September 6, 2024 Record updated