When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
In a security advisory, Moxa said it released patches for CVE-2024-9138, and CVE-2024-9140.
The first one is due to hardcoded credentials, allowing threat actors to elevate privileges and gain root-level access.
It was granted a severity score of 8.6, and was said to affect ten models.
Those include EDR-810 Series, EDR-8010 Series, and EDR-G902 Series.
Among others, it includes EDR-G9004 Series, EDR-G9010 Series, and EDF-G1002-BP Series.
It also offered a set of mitigations for those unable to apply the patch immediately.
These include:
The entire list of affected endpoints can be found onthis link.
