Moxa¹¤Òµ»¥»»»ú¶à¸ö·ì϶°²È«¹«¸æ

°ä²¼¹¦·ò 2019-03-13

·ì϶±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-6557£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º9.8

CVE±àºÅ£ºCVE-2019-6561£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.6£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º8.8

CVE±àºÅ£ºCVE-2019-6565£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.6£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º6.1

CVE±àºÅ£ºCVE-2019-6520£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.1£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º7.5

CVE±àºÅ£ºCVE-2019-6524£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º9.8

CVE±àºÅ£ºCVE-2019-6526£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2019-6522£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.1£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º9.1

CVE±àºÅ£ºCVE-2019-6518£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£º¸ßΣ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.5£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º7.5

CVE±àºÅ£ºCVE-2019-6563£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑϳÁ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º9.8

CVE±àºÅ£ºCVE-2019-6559£¬ £¬£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬ £¬£¬£¬£¬£¬£¬£¬ CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º7.5£¬ £¬£¬£¬£¬£¬£¬£¬¹Ù·½£º6.5


Ó°ÏìÁìÓò


ÊÜÓ°Ïì°æ±¾£º 

IKS-G6824A series Versions 4.5 and prior,

EDS-405A series Version 3.8 and prior,

EDS-408A series Version 3.8 and prior, and

EDS-510A series Version 3.8 and prior.


·ì϶¸ÅÊö


Moxa EDSºÍIKSÊÇÖйų́ÍåĦɯ£¨Moxa£©¹«Ë¾µÄ¹¤Òµ»¥»»»ú£¬ £¬£¬£¬£¬£¬£¬£¬±»ºÜ¶àÐÐҵʹÓ㬠£¬£¬£¬£¬£¬£¬£¬Ô̺¬ÄÜÔ´²¿ÃÅ£¬ £¬£¬£¬£¬£¬£¬£¬¹Ø¼üÔì×÷ºÍÔËÊ䣬 £¬£¬£¬£¬£¬£¬£¬×êÑÐÈËÔ±·¢ÏÖÁËÈçÏ·ì϶£º


CVE-2019-6557

¶à¿îMoxa²úÆ·ÖдæÔÚ»º³åÇøÒç¶Âí½Å¡£¡£¡£¡£¡£¡£¡£Ô¶³Ì¹¥»÷Õß¿ÉÀûÓø÷ì϶ִÐдúÂë¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6561

¶à¿îMoxa²úÆ·ÖдæÔÚ¿çÕ¾ÒªÇóαÔì·ì϶¡£¡£¡£¡£¡£¡£¡£Ô¶³Ì¹¥»÷Õß¿ÉÀûÓø÷ì϶ִÐÐδÊÚȨµÄ²Ù×÷¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6565

¶à¿îMoxa²úÆ·ÖдæÔÚ¿çÕ¾¾ç±¾·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½Ã»ÓÐÕýÈ·µØÑéÖ¤Óû§ÊäÈë¡£¡£¡£¡£¡£¡£¡£Ô¶³Ì¹¥»÷Õß¿ÉÀûÓø÷ì϶עÈë¶ñÒâµÄ¾ç±¾¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6520

¶à¿îMoxa²úÆ·ÖдæÔÚ½Ó¼û½ÚÔìÃýÎó·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½Ã»ÓÐÕýÈ·µØÑé֤ȨÏÞ¡£¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶Åú¸ÄÅäÖᣡ£¡£¡£¡£¡£¡£


CVE-2019-6524

¶à¿îMoxa²úÆ·ÖдæÔÚ°²È«·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½Ã»Óгä·ÖµØÏÞ¶ÈÉí·ÝÑéÖ¤ÒªÇóµÄ´ÎÊý¡£¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿Éͨ¹ýÖ´Ðб©Á¦Æƽ⹥»÷ÀûÓø÷ì϶»ñÈ¡ÃÜÂë¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6526

¶à¿îMoxa²úÆ·ÖдæÔÚ°²È«·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½Ê¹ÓÃÃ÷ÎĵĴó¾ÖÀ´´«µÝÃô¸ÐÊý¾Ý¡£¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶²¶»ñÃô¸ÐÊý¾Ý£¨ÀýÈ磺ÃÜÂ룩¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6522

¶à¿îMoxa²úÆ·ÖдæÔÚÔ½½ç¶ÁÈ¡·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½Ã»ÓÐÕýÈ·µØÑéÖ¤Êý×éÌìǵ¡£¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶¶ÁÈ¡ËÁÒâµØÖ·ÉϵÄÉ豸Äڴ棬 £¬£¬£¬£¬£¬£¬£¬½ø¶ø¼ìË÷Ãô¸ÐÊý¾Ý»òÔì³ÉÉ豸³ÁÆô¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6518

¶à¿îMoxa²úÆ·ÖдæÔÚ°²È«·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½½«ÃÜÂë´æ´¢ÎªÃ÷ÎÄ´ó¾Ö¡£¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶¶ÁÈ¡Ãô¸ÐÐÅÏ¢¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6563

¶à¿îMoxa²úÆ·ÖдæÔÚ°²È«·ì϶£¬ £¬£¬£¬£¬£¬£¬£¬¸Ã·ì϶ԴÓÚ·¨Ê½ÌìÉúÁËÒ×±»Ô¤²âµÄcookie¡£¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÀûÓø÷ì϶²¶»ñÖÎÀíÔ±ÃÜÂë¡£¡£¡£¡£¡£¡£¡£


CVE-2019-6559

¶à¿îMoxa²úÆ·ÖдæÔÚ°²È«·ì϶¡£¡£¡£¡£¡£¡£¡£Ô¶³Ì¹¥»÷Õ߿ɽèÖúÌØÔìµÄÊý¾Ý°üÀûÓø÷ì϶Ôì³Éת»»Æ÷±ÀÀ££¬ £¬£¬£¬£¬£¬£¬£¬µ¼Ö»ؾø·þÎñ¡£¡£¡£¡£¡£¡£¡£


½¨¸´½¨Òé


Moxa½¨ÒéÓû§Ö´ÐÐÒÔÏ´ëÊ©À´»º½âÕâЩ·ì϶£º

×°Öù̼þ²¹¶¡¡£¡£¡£¡£¡£¡£¡£¿£¿ £¿£¿£¿£¿ £¿Éͨ¹ýÒÔÏÂÁ´½ÓÏòMoxa¿Í»§·þÎñ²¿ÃÅË÷È¡²¹¶¡£¡£¡£¡£¡£¡£¡£¨±ØÒªµÇ¼£©£ºhttps://www.moxa.com/support/request_support.aspx¡£¡£¡£¡£¡£¡£¡£

½ûÓÃIKSÖеÄWeb½ÚÔį̀½Ó¼û£¬ £¬£¬£¬£¬£¬£¬£¬²¢Ê¹ÓÃÆäËû½ÚÔį̀£¬ £¬£¬£¬£¬£¬£¬£¬ÀýÈçSNMP / Telnet / CLI¡£¡£¡£¡£¡£¡£¡£

½«EDSϵÁÐWebÅäÖÃÉèÖÃΪ¡°½öhttps¡±ÒÔÏ÷¼õ¿ÉÔ¤²âµÄ»á»°IDÎÊÌâ¡£¡£¡£¡£¡£¡£¡£


²Î¿¼Á´½Ó


https://ics-cert.us-cert.gov/advisories/ICSA-19-057-01