MoxaÒÔÌ«Íø½»Á÷»ú¶à¸öÎó²îΣº¦Í¨¸æ

Ðû²¼Ê±¼ä 2020-03-05

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2020-6989£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º10£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6987£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º6.5£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6983£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6985£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6995£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6993£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.3£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


PT-7528ϵÁй̼þ£¬£¬£¬£¬£¬°æ±¾4.0»ò¸üµÍ

PT-7828ϵÁй̼þ£¬£¬£¬£¬£¬°æ±¾3.9»ò¸üµÍ



Îó²î¸ÅÊö


Moxa PT-7528ϵÁкÍPT-7828ϵÁÐÒÔÌ«Íø½»Á÷»úÖб£´æ¶à¸öÎó²î£¬£¬£¬£¬£¬¸ÅÊöÈçÏ£º


CVE-2020-6989

»º³åÇø¹ýʧÎó²î¡£¡£ ¡£¡£¡£¡£¡£Ô¶³Ì¹¥»÷Õß¿ÉʹÓøÃÎó²îÖ´ÐÐí§Òâ´úÂë»òÔì³É¾Ü¾øЧÀÍ¡£¡£ ¡£¡£¡£¡£¡£


CVE-2020-6987

¸ÃÎó²îÔ´ÓÚ³ÌÐòʹÓýÏÈõµÄ¼ÓÃÜËã·¨¡£¡£ ¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»ñÈ¡Ãô¸ÐÐÅÏ¢¡£¡£ ¡£¡£¡£¡£¡£


CVE-2020-6983

¸ÃÎó²îÔ´ÓÚ³ÌÐòʹÓÃÁËÓ²±àÂëµÄ¼ÓÃÜÃÜÔ¿¡£¡£ ¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»Ö¸´Ãô¸ÐµÄÊý¾Ý¡£¡£ ¡£¡£¡£¡£¡£


CVE-2020-6985

ÐÅÈÎÖÎÀíÎÊÌâÎó²î¡£¡£ ¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»á¼û¿ØÖÆ̨¡£¡£ ¡£¡£¡£¡£¡£


CVE-2020-6995

¸ÃÎó²îÔ´ÓÚ³ÌÐòûÓÐÒªÇóÓû§Ê¹ÓýÏÇ¿µÄÃÜÂë¡£¡£ ¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»ñȡδÊÚȨµÄ»á¼ûȨÏÞ¡£¡£ ¡£¡£¡£¡£¡£


CVE-2020-6993

ÐÅϢй¶Îó²î¡£¡£ ¡£¡£¡£¡£¡£¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÔÚÔËÐÐÀú³ÌÖб£´æÉèÖõȹýʧ¡£¡£ ¡£¡£¡£¡£¡£Î´ÊÚȨµÄ¹¥»÷Õß¿ÉʹÓÃÎó²î»ñÈ¡ÊÜÓ°Ïì×é¼þÃô¸ÐÐÅÏ¢¡£¡£ ¡£¡£¡£¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPoC/EXP¡£¡£ ¡£¡£¡£¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ³§ÉÌÒÑÐû²¼Éý¼¶²¹¶¡ÒÔÐÞ¸´Îó²î£¬£¬£¬£¬£¬²¹¶¡»ñÈ¡Á´½Ó:https://www.moxa.com/en/support/support/security-advisory/pt-7528-7828-ethernet-switches-vulnerabilities¡£¡£ ¡£¡£¡£¡£¡£


²Î¿¼Á´½Ó


https://www.us-cert.gov/ics/advisories/icsa-20-056-03