Moxa IKS, EDS (Update A)


2019-10-25 02:00:15 UTC


This updated advisory is a follow-up to the original advisory titled ICSA-19-057-01 Moxa IKS, EDS that was published February 26, 2019, on the ICS webpage on This updated advisory includes mitigations for classic buffer overflow, cross-site request forgery, cross-site scripting, improper access controls, improper restriction of excessive authentication attempts, missing encryption of sensitive data, out-of-bounds read, unprotected storage of credentials, predictable from observable state, and uncontrolled resource consumption vulnerabilities reported in the Moxa IKS and EDS industrial switches.