MoxaÒÔÌ«Íø½»Á÷»ú¶à¸öÎó²îΣº¦Í¨¸æ

Ðû²¼Ê±¼ä 2020-03-05

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2020-6989£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º10£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6987£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º6.5£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6983£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6985£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6995£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º9.8£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨

CVE±àºÅ£ºCVE-2020-6993£¬£¬£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÖÐΣ£¬£¬£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ£º5.3£¬£¬£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


PT-7528ϵÁй̼þ£¬£¬£¬£¬£¬£¬°æ±¾4.0»ò¸üµÍ

PT-7828ϵÁй̼þ£¬£¬£¬£¬£¬£¬°æ±¾3.9»ò¸üµÍ



Îó²î¸ÅÊö


Moxa PT-7528ϵÁкÍPT-7828ϵÁÐÒÔÌ«Íø½»Á÷»úÖб£´æ¶à¸öÎó²î£¬£¬£¬£¬£¬£¬¸ÅÊöÈçÏ£º


CVE-2020-6989

»º³åÇø¹ýʧÎó²î¡£¡£ ¡£¡£Ô¶³Ì¹¥»÷Õß¿ÉʹÓøÃÎó²îÖ´ÐÐí§Òâ´úÂë»òÔì³É¾Ü¾øЧÀÍ¡£¡£ ¡£¡£


CVE-2020-6987

¸ÃÎó²îÔ´ÓÚ³ÌÐòʹÓýÏÈõµÄ¼ÓÃÜËã·¨¡£¡£ ¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»ñÈ¡Ãô¸ÐÐÅÏ¢¡£¡£ ¡£¡£


CVE-2020-6983

¸ÃÎó²îÔ´ÓÚ³ÌÐòʹÓÃÁËÓ²±àÂëµÄ¼ÓÃÜÃÜÔ¿¡£¡£ ¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»Ö¸´Ãô¸ÐµÄÊý¾Ý¡£¡£ ¡£¡£


CVE-2020-6985

ÐÅÈÎÖÎÀíÎÊÌâÎó²î¡£¡£ ¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»á¼û¿ØÖÆ̨¡£¡£ ¡£¡£


CVE-2020-6995

¸ÃÎó²îÔ´ÓÚ³ÌÐòûÓÐÒªÇóÓû§Ê¹ÓýÏÇ¿µÄÃÜÂë¡£¡£ ¡£¡£¹¥»÷Õß¿ÉʹÓøÃÎó²î»ñȡδÊÚȨµÄ»á¼ûȨÏÞ¡£¡£ ¡£¡£


CVE-2020-6993

ÐÅϢй¶Îó²î¡£¡£ ¡£¡£¸ÃÎó²îÔ´ÓÚÍøÂçϵͳ»ò²úÆ·ÔÚÔËÐÐÀú³ÌÖб£´æÉèÖõȹýʧ¡£¡£ ¡£¡£Î´ÊÚȨµÄ¹¥»÷Õß¿ÉʹÓÃÎó²î»ñÈ¡ÊÜÓ°Ïì×é¼þÃô¸ÐÐÅÏ¢¡£¡£ ¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPoC/EXP¡£¡£ ¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ³§ÉÌÒÑÐû²¼Éý¼¶²¹¶¡ÒÔÐÞ¸´Îó²î£¬£¬£¬£¬£¬£¬²¹¶¡»ñÈ¡Á´½Ó:https://www.moxa.com/en/support/support/security-advisory/pt-7528-7828-ethernet-switches-vulnerabilities¡£¡£ ¡£¡£


²Î¿¼Á´½Ó


https://www.us-cert.gov/ics/advisories/icsa-20-056-03