Detections
Analytics
Moxa EDR-G903 Series Routers EDR Cryptographic Issues (CVE-2012-4694)
high Tenable OT Security Plugin ID 502714
Synopsis
The remote OT asset is affected by a vulnerability.Description
Moxa EDR-G903 series routers with firmware before 2.11 do not use a sufficient source of entropy for (1) SSH and (2) SSL keys, which makes it easier for man-in-the-middle attackers to spoof a device or modify a client-server data stream by leveraging knowledge of a key from a product installation elsewhere.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
Refer to the vendor advisory.See Also
http://ics-cert.us-cert.gov/pdf/ICSA-13-042-01.pdf
http://www.moxa.com/support/download.aspx?type=support&id=492
Plugin Details
Severity: High
ID: 502714
Version: 1.2
Type: remote
Family: Tenable.ot
Published: 12/4/2024
Updated: 12/5/2024
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 7.6
Temporal Score: 5.6
Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2012-4694
Vulnerability Information
CPE: cpe:/h:moxa:edr-g903:-
Required KB Items: Tenable.ot/Moxa
Exploit Ease: No known exploits are available
Patch Publication Date: 2/15/2013
Vulnerability Publication Date: 2/15/2013
Reference Information
CVE: CVE-2012-4694
CWE: 310
ICSA: 13-042-01