Critical Infrastructure Vulnerable to Disruptive Attacks Due to Vulnerabilities in Moxa NPort Devices

11
Critical-Infrastructure Vulnerable-to-Disruptive-Attacks-Due-to-Vulnerabilities-in-Moxa-NPort

An extensively used Moxa industrial networking device has two potentially major flaws that could allow threat actors to seriously interrupt operations.

The problems have been fixed by the Taiwan-based industrial networking and automation solutions company. The NPort 5110 device servers from Moxa, which are made for connecting serial devices to Ethernet networks, are affected by the two security flaws, which are identified as CVE-2022-2043 and CVE-2022-2044 and are classified as having “high severity.”

A remote attacker could utilize the flaws to enter a denial of service (DoS) condition on the targeted device. The vulnerabilities have alerts from Moxa and the US Cybersecurity and Infrastructure Security Agency (CISA).

Read More: Moxa NPort Device Flaws Can Expose Critical Infrastructure to Disruptive Attacks