CVE-2023-1257

🗓️ 07 Mar 2023 16:54:21Reported by icscertType

An attacker can gain access to Moxa UC Series devices and modify authentication files to create a new user and gain full system access

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2023-1257	7 Mar 202320:23	–	circl
CNNVD	Moxa UC 安全漏洞	7 Mar 202300:00	–	cnnvd
Cvelist	CVE-2023-1257 CVE-2023-1257	7 Mar 202316:54	–	cvelist
EUVD	EUVD-2023-23526	3 Oct 202520:07	–	euvd
ICS	Moxa UC Series	29 Nov 202200:00	–	ics
NVD	CVE-2023-1257	7 Mar 202317:15	–	nvd
OSV	CVE-2023-1257	7 Mar 202317:15	–	osv
Prion	Design/Logic Flaw	7 Mar 202317:15	–	prion
Positive Technologies	PT-2023-1864 · Moxa · Moxa Uc Series	23 Feb 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-1257	23 May 202502:58	–	redhatcve

NVD

Vulners

Node

moxa uc-2101-lx_firmwareRange1.3–1.5

AND

moxa uc-2101-lxMatch-

Node

moxa uc-2102-lx_firmwareRange1.3–1.5

AND

moxa uc-2102-lxMatch-

Node

moxa uc-2102-t-lx_firmwareRange1.3–1.5

AND

moxa uc-2102-t-lxMatch-

Node

moxa uc-2104-lx_firmwareRange1.3–1.5

AND

moxa uc-2104-lxMatch-

Node

moxa uc-2111-lx_firmwareRange1.3–1.5

AND

moxa uc-2111-lxMatch-

Node

moxa uc-2112-lx_firmwareRange1.3–1.5

AND

moxa uc-2112-lxMatch-

Node

moxa uc-2114-t-lx_firmwareRange1.3–1.5

moxa uc-2114-t-lx_firmwareMatch-

AND

moxa uc-2114-t-lxMatch-

Node

moxa uc-2116-t-lx_firmwareRange1.3–1.5

AND

moxa uc-2116-t-lxMatch-

Node

moxa uc-3101-t-ap-lx_firmwareRange1.2–2.0

AND

moxa uc-3101-t-ap-lxMatch-

Node

moxa uc-3101-t-eu-lx_firmwareRange1.2–2.0

AND

moxa uc-3101-t-eu-lxMatch-

Node

moxa uc-3101-t-us-lx_firmwareRange1.2–2.0

AND

moxa uc-3101-t-us-lxMatch-

Node

moxa uc-3111-t-ap-lx_firmwareRange1.2–2.0

AND

moxa uc-3111-t-ap-lxMatch-

Node

moxa uc-3111-t-ap-lx-nw_firmwareRange1.2–2.0

AND

moxa uc-3111-t-ap-lx-nwMatch-

Node

moxa uc-3111-t-eu-lx_firmwareRange1.2–2.0

AND

moxa uc-3111-t-eu-lxMatch-

Node

moxa uc-3111-t-eu-lx-nw_firmwareRange1.2–2.0

AND

moxa uc-3111-t-eu-lx-nwMatch-

Node

moxa uc-3111-t-us-lx_firmwareRange1.2–2.0

AND

moxa uc-3111-t-us-lxMatch-

Node

moxa uc-3111-t-us-lx-nw_firmwareRange1.2–2.0

AND

moxa uc-3111-t-us-lx-nwMatch-

Node

moxa uc-3121-t-ap-lx_firmwareRange1.2–2.0

AND

moxa uc-3121-t-ap-lxMatch-

Node

moxa uc-3121-t-eu-lx_firmwareRange1.2–2.0

AND

moxa uc-3121-t-eu-lxMatch-

Node

moxa uc-3121-t-us-lx_firmwareRange1.2–2.0

AND

moxa uc-3121-t-us-lxMatch-

Node

moxa uc-5101-lx_firmwareMatch1.2

AND

moxa uc-5101-lxMatch-

Node

moxa uc-5101-t-lx_firmwareMatch1.2

AND

moxa uc-5101-t-lxMatch-

Node

moxa uc-5102-lx_firmwareMatch1.2

AND

moxa uc-5102-lxMatch-

Node

moxa uc-5102-t-lx_firmwareMatch1.2

AND

moxa uc-5102-t-lxMatch-

Node

moxa uc-5111-lx_firmwareMatch1.2

AND

moxa uc-5111-lxMatch-

Node

moxa uc-5111-t-lx_firmwareMatch1.2

AND

moxa uc-5111-t-lxMatch-

Node

moxa uc-5112-lx_firmwareMatch1.2

AND

moxa uc-5112-lxMatch-

Node

moxa uc-5112-t-lx_firmwareMatch1.2

AND

moxa uc-5112-t-lxMatch-

Node

moxa uc-8112-lx_firmwareMatch1.2

AND

moxa uc-8112-lxMatch-

Node

moxa uc-8131-lx_firmwareMatch1.2

AND

moxa uc-8131-lxMatch-

Node

moxa uc-8132-lx_firmwareMatch1.2

AND

moxa uc-8132-lxMatch-

Node

moxa uc-8162-lx_firmwareMatch1.2

AND

moxa uc-8162-lxMatch-

Node

moxa uc-8112-me-t-lx_firmwareRange1.0–1.1

AND

moxa uc-8112-me-t-lxMatch-

Node

moxa uc-8112-me-t-lx1_firmwareRange1.0–1.1

AND

moxa uc-8112-me-t-lx1Match-

Node

moxa uc-8112a-me-t-lx_firmwareRange1.0–1.1

AND

moxa uc-8112a-me-t-lxMatch-

Node

moxa uc-8210-t-lx-s_firmwareRange1.0–2.4

AND

moxa uc-8210-t-lx-sMatch-

Node

moxa uc-8220-t-lx_firmwareRange1.0–2.4

AND

moxa uc-8220-t-lxMatch-

Node

moxa uc-8220-t-lx-ap-s_firmwareRange1.0–2.4

AND

moxa uc-8220-t-lx-ap-sMatch-

Node

moxa uc-8220-t-lx-eu-s_firmwareRange1.0–2.4

AND

moxa uc-8220-t-lx-eu-sMatch-

Node

moxa uc-8220-t-lx-s_firmwareRange1.0–2.4

AND

moxa uc-8220-t-lx-sMatch-

Node

moxa uc-8220-t-lx-us-s_firmwareRange1.0–2.4

AND

moxa uc-8220-t-lx-us-sMatch-

Node

moxa uc-8410a-lx_firmwareMatch2.2

AND

moxa uc-8410a-lxMatch-

Node

moxa uc-8410a-nw-lx_firmwareMatch2.2

AND

moxa uc-8410a-nw-lxMatch-

Node

moxa uc-8410a-nw-t-lx_firmwareMatch2.2

AND

moxa uc-8410a-nw-t-lxMatch-

Node

moxa uc-8410a-t-lx_firmwareMatch2.2

AND

moxa uc-8410a-t-lxMatch-

Node

moxa uc-8540-lx_firmwareRange1.0–1.2

AND

moxa uc-8540-lxMatch-

Node

moxa uc-8540-t-ct-lx_firmwareRange1.0–1.2

AND

moxa uc-8540-t-ct-lxMatch-

Node

moxa uc-8540-t-lx_firmwareRange1.0–1.2

AND

moxa uc-8540-t-lxMatch-

Node

moxa uc-8580-lx_firmwareMatch1.1

AND

moxa uc-8580-lxMatch-

Node

moxa uc-8580-q-lx_firmwareMatch1.1

AND

moxa uc-8580-q-lxMatch-

Node

moxa uc-8580-t-ct-lx_firmwareMatch1.1

AND

moxa uc-8580-t-ct-lxMatch-

Node

moxa uc-8580-t-ct-q-lx_firmwareMatch1.1

AND

moxa uc-8580-t-ct-q-lxMatch-

Node

moxa uc-8580-t-lx_firmwareMatch1.1

AND

moxa uc-8580-t-lxMatch-

Node

moxa uc-8580-t-q-lx_firmwareMatch1.1

AND

moxa uc-8580-t-q-lxMatch-

[
  {
    "vendor": "MOXA",
    "product": "UC-8580 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.1"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-8540 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.0 to V1.2"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-8410A Series",
    "versions": [
      {
        "status": "affected",
        "version": "V2.2"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-8200 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.0 to V2.4"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-8100A-ME-T Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.0 to V1.1"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-8100 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.2"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-5100 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.2"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-3100 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.2 to V2.0"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-2100 Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.3 to V1.5"
      }
    ]
  },
  {
    "vendor": "MOXA",
    "product": "UC-2100-W Series",
    "versions": [
      {
        "status": "affected",
        "version": "V1.3 to V1.5"
      }
    ]
  }
]

Source	Link
cisa	www.cisa.gov/uscert/ics/advisories/icsa-22-333-04

21 Nov 2024 07:38Current

7High risk

Vulners AI Score7

CVSS 3.16.8 - 7.6

EPSS0.00102

SSVC