MoxaÒÔÌ«Íø½»Á÷»ú¶à¸öÎó²îΣº¦Í¨¸æ

Ðû²¼Ê±¼ä 2020-03-05

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2020-6989£¬£¬£¬£¬£¬£¬ £¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º10£¬£¬£¬£¬£¬£¬ £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6987£¬£¬£¬£¬£¬£¬ £¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬£¬£¬£¬ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º6.5£¬£¬£¬£¬£¬£¬ £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6983£¬£¬£¬£¬£¬£¬ £¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬£¬ £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6985£¬£¬£¬£¬£¬£¬ £¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬£¬ £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6995£¬£¬£¬£¬£¬£¬ £¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬£¬ £¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6993£¬£¬£¬£¬£¬£¬ £¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬£¬£¬£¬ £¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.3£¬£¬£¬£¬£¬£¬ £¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


PT-7528ϵÁй̼þ£¬£¬£¬£¬£¬£¬ £¬°æ±¾4.0»ò¸üµÍ

PT-7828ϵÁй̼þ£¬£¬£¬£¬£¬£¬ £¬°æ±¾3.9»ò¸üµÍ



Îó²î¸ÅÊö


Moxa PT-7528ϵÁкÍPT-7828ϵÁÐÒÔÌ«Íø½»Á÷»úÖб£´æ¶à¸öÎó²î£¬£¬£¬£¬£¬£¬ £¬¸ÅÊöÈçÏ£º


CVE-2020-6989

»º³åÇø¹ýʧÎó²î¡£¡£¡£Ô¶³Ì¹¥»÷Õß¿ÉʹÓøÃÎó²îÖ´ÐÐí§Òâ´úÂë»òÔì³É¾Ü¾øЧÀÍ¡£¡£¡£


CVE-2020-6987

¸ÃÎó²îÔ´ÓÚ³ÌÐòʹÓýÏÈõµÄ¼ÓÃÜËã·¨¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»ñÈ¡Ãô¸ÐÐÅÏ¢¡£¡£¡£


CVE-2020-6983

¸ÃÎó²îÔ´ÓÚ³ÌÐòʹÓÃÁËÓ²±àÂëµÄ¼ÓÃÜÃÜÔ¿¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»Ö¸´Ãô¸ÐµÄÊý¾Ý¡£¡£¡£


CVE-2020-6985

ÐÅÈÎÖÎÀíÎÊÌâÎó²î¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»á¼û¿ØÖÆ̨¡£¡£¡£


CVE-2020-6995

¸ÃÎó²îÔ´ÓÚ³ÌÐòûÓÐÒªÇóÓû§Ê¹ÓýÏÇ¿µÄÃÜÂë¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»ñȡδÊÚȨµÄ»á¼ûȨÏÞ¡£¡£¡£


CVE-2020-6993

ÐÅϢй¶Îó²î¡£¡£¡£¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÔÚÔËÐÐÀú³ÌÖб£´æÉèÖõȹýʧ¡£¡£¡£Î´ÊÚȨµÄ¹¥»÷Õß¿ÉʹÓÃÎó²î»ñÈ¡ÊÜÓ°Ïì×é¼þÃô¸ÐÐÅÏ¢¡£¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPoC/EXP¡£¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ³§ÉÌÒÑÐû²¼Éý¼¶²¹¶¡ÒÔÐÞ¸´Îó²î£¬£¬£¬£¬£¬£¬ £¬²¹¶¡»ñÈ¡Á´½Ó:https://www.moxa.com/en/support/support/security-advisory/pt-7528-7828-ethernet-switches-vulnerabilities¡£¡£¡£


²Î¿¼Á´½Ó


https://www.us-cert.gov/ics/advisories/icsa-20-056-03