A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle (MITM) attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 or lower. and MGate MB3480 Series Firmware Version 3.2 or lower.
References
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
Configuration 19 (hide)
AND |
|
Configuration 20 (hide)
AND |
|
History
25 Apr 2022, 18:43
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-Other | |
CPE | cpe:2.3:o:moxa:mgate_mb3170i-m-sc_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170i-s-sc:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-m-st-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170i-s-sc_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3270i_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170i-m-sc-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-m-st_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3270:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3270i:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3270-t:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3480_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-s-sc-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3480:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170i:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-m-st:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-m-sc-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170i-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3270-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3280_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-m-sc:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170i_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-m-sc-t:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170i-s-sc-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-s-sc:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-s-sc-t:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170i-t:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3280:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170i-m-sc-t:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170i-m-sc:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-t:-:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3270i-t:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-s-sc_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3270_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170-m-st-t:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:moxa:mgate_mb3170i-s-sc-t:-:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3270i-t_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:moxa:mgate_mb3170-m-sc_firmware:*:*:*:*:*:*:*:* |
|
References | (MISC) https://www.moxa.com/en/support/product-support/security-advisory/mgate-mb3170-mb3270-mb3280-mb3480-protocol-gateways-vulnerability - Vendor Advisory | |
CVSS |
v2 : v3 : |
v2 : 5.8
v3 : 7.4 |
15 Apr 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-15 19:15
Updated : 2024-02-04 22:29
NVD link : CVE-2022-27048
Mitre link : CVE-2022-27048
CVE.ORG link : CVE-2022-27048
JSON object : View
Products Affected
moxa
- mgate_mb3170i-t
- mgate_mb3270_firmware
- mgate_mb3170i-s-sc-t_firmware
- mgate_mb3170-m-sc
- mgate_mb3170-m-st_firmware
- mgate_mb3270-t
- mgate_mb3170i-s-sc
- mgate_mb3170_firmware
- mgate_mb3270-t_firmware
- mgate_mb3170i-s-sc_firmware
- mgate_mb3170-m-sc_firmware
- mgate_mb3170i-s-sc-t
- mgate_mb3170
- mgate_mb3170-s-sc-t
- mgate_mb3280_firmware
- mgate_mb3280
- mgate_mb3170-s-sc_firmware
- mgate_mb3170-t
- mgate_mb3170-m-st
- mgate_mb3170-m-sc-t_firmware
- mgate_mb3270i
- mgate_mb3170-t_firmware
- mgate_mb3270i-t_firmware
- mgate_mb3270i-t
- mgate_mb3170i
- mgate_mb3170i-m-sc-t
- mgate_mb3270i_firmware
- mgate_mb3170-s-sc-t_firmware
- mgate_mb3170i-m-sc-t_firmware
- mgate_mb3170-m-st-t
- mgate_mb3170i-m-sc_firmware
- mgate_mb3480_firmware
- mgate_mb3170i_firmware
- mgate_mb3170-m-sc-t
- mgate_mb3170-s-sc
- mgate_mb3270
- mgate_mb3170i-m-sc
- mgate_mb3480
- mgate_mb3170i-t_firmware
- mgate_mb3170-m-st-t_firmware
CWE