{
    "dataType": "CVE_RECORD",
    "dataVersion": "5.1",
    "cveMetadata": {
        "cveId": "CVE-2024-9137",
        "assignerOrgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa",
        "state": "PUBLISHED",
        "assignerShortName": "Moxa",
        "dateReserved": "2024-09-24T07:11:35.456Z",
        "datePublished": "2024-10-14T08:09:22.689Z",
        "dateUpdated": "2024-10-15T14:32:26.853Z"
    },
    "containers": {
        "cna": {
            "affected": [
                {
                    "defaultStatus": "unaffected",
                    "product": "EDR-8010 Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "3.12.1",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                },
                {
                    "defaultStatus": "unaffected",
                    "product": "EDR-G9004 Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "3.12.1",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                },
                {
                    "defaultStatus": "unaffected",
                    "product": "EDR-G9010 Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "3.12.1",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                },
                {
                    "defaultStatus": "unaffected",
                    "product": "EDF-G1002-BP Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "3.12.1",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                },
                {
                    "defaultStatus": "unaffected",
                    "product": "NAT-102 Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "1.0.5",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                },
                {
                    "defaultStatus": "unaffected",
                    "product": "OnCell G4302-LTE4 Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "3.9",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                },
                {
                    "defaultStatus": "unaffected",
                    "product": "TN-4900 Series",
                    "vendor": "Moxa",
                    "versions": [
                        {
                            "lessThanOrEqual": "3.6",
                            "status": "affected",
                            "version": "1.0",
                            "versionType": "custom"
                        }
                    ]
                }
            ],
            "credits": [
                {
                    "lang": "en",
                    "type": "finder",
                    "value": "Lars Haulin"
                }
            ],
            "datePublic": "2024-10-14T08:07:00.000Z",
            "descriptions": [
                {
                    "lang": "en",
                    "supportingMedia": [
                        {
                            "base64": false,
                            "type": "text/html",
                            "value": "<p>The affected product lacks an authentication check when sending commands to the server via the Moxa service. This vulnerability allows an attacker to execute specified commands, potentially leading to unauthorized downloads or uploads of configuration files and system compromise.</p>"
                        }
                    ],
                    "value": "The affected product lacks an authentication check when sending commands to the server via the Moxa service. This vulnerability allows an attacker to execute specified commands, potentially leading to unauthorized downloads or uploads of configuration files and system compromise."
                }
            ],
            "impacts": [
                {
                    "capecId": "CAPEC-216",
                    "descriptions": [
                        {
                            "lang": "en",
                            "value": "CAPEC-216 Communication Channel Manipulation"
                        }
                    ]
                }
            ],
            "metrics": [
                {
                    "cvssV4_0": {
                        "Automatable": "NOT_DEFINED",
                        "Recovery": "NOT_DEFINED",
                        "Safety": "NOT_DEFINED",
                        "attackComplexity": "LOW",
                        "attackRequirements": "NONE",
                        "attackVector": "NETWORK",
                        "baseScore": 8.8,
                        "baseSeverity": "HIGH",
                        "privilegesRequired": "NONE",
                        "providerUrgency": "NOT_DEFINED",
                        "subAvailabilityImpact": "NONE",
                        "subConfidentialityImpact": "NONE",
                        "subIntegrityImpact": "NONE",
                        "userInteraction": "NONE",
                        "valueDensity": "NOT_DEFINED",
                        "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N",
                        "version": "4.0",
                        "vulnAvailabilityImpact": "HIGH",
                        "vulnConfidentialityImpact": "LOW",
                        "vulnIntegrityImpact": "HIGH",
                        "vulnerabilityResponseEffort": "NOT_DEFINED"
                    },
                    "format": "CVSS",
                    "scenarios": [
                        {
                            "lang": "en",
                            "value": "GENERAL"
                        }
                    ]
                },
                {
                    "cvssV3_1": {
                        "attackComplexity": "LOW",
                        "attackVector": "NETWORK",
                        "availabilityImpact": "HIGH",
                        "baseScore": 9.4,
                        "baseSeverity": "CRITICAL",
                        "confidentialityImpact": "LOW",
                        "integrityImpact": "HIGH",
                        "privilegesRequired": "NONE",
                        "scope": "UNCHANGED",
                        "userInteraction": "NONE",
                        "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H",
                        "version": "3.1"
                    },
                    "format": "CVSS",
                    "scenarios": [
                        {
                            "lang": "en",
                            "value": "GENERAL"
                        }
                    ]
                }
            ],
            "problemTypes": [
                {
                    "descriptions": [
                        {
                            "cweId": "CWE-306",
                            "description": "CWE-306 Missing Authentication for Critical Function",
                            "lang": "en",
                            "type": "CWE"
                        }
                    ]
                }
            ],
            "providerMetadata": {
                "orgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa",
                "shortName": "Moxa",
                "dateUpdated": "2024-10-15T07:56:29.135Z"
            },
            "references": [
                {
                    "tags": [
                        "vendor-advisory"
                    ],
                    "url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-241154-missing-authentication-and-os-command-injection-vulnerabilities-in-routers-and-network-security-appliances"
                }
            ],
            "solutions": [
                {
                    "lang": "en",
                    "supportingMedia": [
                        {
                            "base64": false,
                            "type": "text/html",
                            "value": "<p>Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for the affected products are shown below.</p><ol><li>EDR-8010 Series: Upgrade to the firmware version 3.13.</li><li>EDR-G9004 Series: Upgrade to the firmware version 3.13.</li><li>EDR-G9010 Series: Upgrade to the firmware version 3.13.</li><li>EDR-G1002-BP Series: Upgrade to the firmware version 3.13.</li><li>NAT-102 Series: Please contact Moxa Technical Support for the security patch.</li><li>ONCell G4302-LTE4 Series: Upgrade to the firmware version 3.13.</li><li>TN-4900 Series: Upgrade to the firmware version 3.13.</li></ol>"
                        }
                    ],
                    "value": "Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for the affected products are shown below.\n\n  *  EDR-8010 Series: Upgrade to the firmware version 3.13.\n  *  EDR-G9004 Series: Upgrade to the firmware version 3.13.\n  *  EDR-G9010 Series: Upgrade to the firmware version 3.13.\n  *  EDR-G1002-BP Series: Upgrade to the firmware version 3.13.\n  *  NAT-102 Series: Please contact Moxa Technical Support for the security patch.\n  *  ONCell G4302-LTE4 Series: Upgrade to the firmware version 3.13.\n  *  TN-4900 Series: Upgrade to the firmware version 3.13."
                }
            ],
            "source": {
                "discovery": "EXTERNAL"
            },
            "title": "Moxa Service Missing Authentication for Critical Function",
            "workarounds": [
                {
                    "lang": "en",
                    "supportingMedia": [
                        {
                            "base64": false,
                            "type": "text/html",
                            "value": "<p></p><ul><li>Minimize network exposure to ensure the device is not accessible from the Internet.</li><li>Limit web access to trusted IP addresses and networks by using firewall rules or TCP wrappers.</li><li>Implement IDS or Intrusion Prevention System (IPS) to detect and prevent exploitation attempts. These systems can provide an additional layer of defense by monitoring network traffic for signs of attacks.</li></ul><p></p>\n\n\n<br>"
                        }
                    ],
                    "value": "*  Minimize network exposure to ensure the device is not accessible from the Internet.\n  *  Limit web access to trusted IP addresses and networks by using firewall rules or TCP wrappers.\n  *  Implement IDS or Intrusion Prevention System (IPS) to detect and prevent exploitation attempts. These systems can provide an additional layer of defense by monitoring network traffic for signs of attacks."
                }
            ],
            "x_generator": {
                "engine": "Vulnogram 0.2.0"
            }
        },
        "adp": [
            {
                "affected": [
                    {
                        "vendor": "moxa",
                        "product": "edr-g9010",
                        "cpes": [
                            "cpe:2.3:a:moxa:edr-g9010:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "3.12.1",
                                "versionType": "custom"
                            }
                        ]
                    },
                    {
                        "vendor": "moxa",
                        "product": "nat-102",
                        "cpes": [
                            "cpe:2.3:a:moxa:nat-102:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "1.0.5",
                                "versionType": "custom"
                            }
                        ]
                    },
                    {
                        "vendor": "moxa",
                        "product": "tn-4900",
                        "cpes": [
                            "cpe:2.3:a:moxa:tn-4900:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "3.6",
                                "versionType": "custom"
                            }
                        ]
                    },
                    {
                        "vendor": "moxa",
                        "product": "oncell_g4302-lte4",
                        "cpes": [
                            "cpe:2.3:a:moxa:oncell_g4302-lte4:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "3.9",
                                "versionType": "custom"
                            }
                        ]
                    },
                    {
                        "vendor": "moxa",
                        "product": "edf-g1002-bp",
                        "cpes": [
                            "cpe:2.3:a:moxa:edf-g1002-bp:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "3.12.1",
                                "versionType": "custom"
                            }
                        ]
                    },
                    {
                        "vendor": "moxa",
                        "product": "edr-g9004",
                        "cpes": [
                            "cpe:2.3:a:moxa:edr-g9004:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "3.12.1",
                                "versionType": "custom"
                            }
                        ]
                    },
                    {
                        "vendor": "moxa",
                        "product": "edr-8010",
                        "cpes": [
                            "cpe:2.3:a:moxa:edr-8010:*:*:*:*:*:*:*:*"
                        ],
                        "defaultStatus": "unknown",
                        "versions": [
                            {
                                "version": "1.0",
                                "status": "affected",
                                "lessThanOrEqual": "3.12.1",
                                "versionType": "custom"
                            }
                        ]
                    }
                ],
                "metrics": [
                    {
                        "other": {
                            "type": "ssvc",
                            "content": {
                                "timestamp": "2024-10-14T15:27:27.483068Z",
                                "id": "CVE-2024-9137",
                                "options": [
                                    {
                                        "Exploitation": "none"
                                    },
                                    {
                                        "Automatable": "yes"
                                    },
                                    {
                                        "Technical Impact": "partial"
                                    }
                                ],
                                "role": "CISA Coordinator",
                                "version": "2.0.3"
                            }
                        }
                    }
                ],
                "title": "CISA ADP Vulnrichment",
                "providerMetadata": {
                    "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
                    "shortName": "CISA-ADP",
                    "dateUpdated": "2024-10-15T14:32:26.853Z"
                }
            }
        ]
    }
}