Headline
CVE-2021-46559: TN-5900 Series Secure Routers Vulnerabilities
The firmware on Moxa TN-5900 devices through 3.1 has a weak algorithm that allows an attacker to defeat an inspection mechanism for integrity protection.
Please sign in
SUMMARY
TN-5900 Series Secure Routers Vulnerabilities
- Version: V1.0
- Release Date: Dec 28, 2021
- Reference:
- N/A
Multiple product vulnerabilities were identified in Moxa’s TN-5900 Series Secure Routers. In response to this, Moxa has developed related solutions to address these vulnerabilities.
The identified vulnerability types and potential impacts are shown below:
Item
Vulnerability Type
Impact
1
Firmware has weak algorithm to protect the integrity of the device
An attacker could easily modify the firmware and avoid the inspection mechanism.
2
Command injection
An attacker could inject malicious code to damage the device.
AFFECTED PRODUCTS AND SOLUTIONS
Affected Products:
The affected products and firmware versions are shown below.
Product Series
Affected Versions
TN-5900 Series
Firmware Version 3.1 or lower
Solutions:
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below.
Acknowledgment:
We would like to express our appreciation to KoreLogic for reporting the vulnerability, working with us to help enhance the security of our products, and helping us provide a better service to our customers.
Revision History:
VERSION
DESCRIPTION
RELEASE DATE
1.0
First Release
Dec 28, 2021
Relevant Products
TN-5900 Series ·
Print this page
You can manage and share your saved list in My Moxa
Let’s get that fixed
If you are concerned about a potential cybersecurity vulnerability, please contact us and one of technical support staff will get in touch with you.
Report a Vulnerability
Feedback