CVE-2023-5962

ioLogik E1200 Series: Weak Cryptographic Algorithm Vulnerability

Description

A weak cryptographic algorithm vulnerability has been identified in ioLogik E1200 Series firmware versions v3.3 and prior. This vulnerability can help an attacker compromise the confidentiality of sensitive data. This vulnerability may lead an attacker to get unexpected authorization.

Remediation

Solution:

Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below. * ioLogik E1200 Series : Please contact Moxa Technical Support for the security patch (v3.3.7). https://www.moxa.com/tw/support/technical-support

References

Link	Tags
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-235250-iologik-e1200-series-web-server-vulnerability	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2023-5962?: CVE-2023-5962 has been scored as a medium severity vulnerability.
How to fix CVE-2023-5962?: To fix CVE-2023-5962: Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below. * ioLogik E1200 Series : Please contact Moxa Technical Support for the security patch (v3.3.7). https://www.moxa.com/tw/support/technical-support
Is CVE-2023-5962 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2023-5962 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-5962?: CVE-2023-5962 affects Moxa ioLogik E1200 Series.

Description

Remediation

Categories

CWE-328 – Use of Weak Hash

CWE-327 – Use of a Broken or Risky Cryptographic Algorithm

References

Frequently Asked Questions