Detections
Analytics
Moxa IKS, EDS Missing Encryption of Sensitive Data (CVE-2019-6526)
critical Tenable OT Security Plugin ID 501469
Synopsis
The remote OT asset is affected by a vulnerability.Description
Moxa IKS-G6824A series Versions 4.5 and prior, EDS-405A series Version 3.8 and prior, EDS-408A series Version 3.8 and prior, and EDS-510A series Version 3.8 and prior use plaintext transmission of sensitive data, which may allow an attacker to capture sensitive data such as an administrative password.This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.
Solution
The following text was originally created by the Cybersecurity and Infrastructure Security Agency (CISA). The original can be found at CISA.gov.Moxa recommends users implement the following measures to mitigate these vulnerabilities.
- Install firmware patch. Patches may be requested from Moxa Customer Service (login required):
- Set EDS series Web configuration as "https only” to reduce predictable session ID concern.
Please see Moxa’s security advisory for more information.
See Also
Plugin Details
Severity: Critical
ID: 501469
Version: 1.4
Type: remote
Family: Tenable.ot
Published: 8/2/2023
Updated: 3/4/2024
Supported Sensors: Tenable OT Security
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS Score Source: CVE-2019-6526
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:moxa:eds-405a_firmware, cpe:/o:moxa:eds-408a_firmware, cpe:/o:moxa:eds-510a_firmware, cpe:/o:moxa:iks-g6824a_firmware
Required KB Items: Tenable.ot/Moxa
Exploit Ease: No known exploits are available
Patch Publication Date: 4/15/2019
Vulnerability Publication Date: 4/15/2019
Reference Information
CVE: CVE-2019-6526
CWE: 319