CVE-2020-6989: Buffer Overflow
First published: Tue Mar 24 2020(Updated: )
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, a buffer overflow in the web server allows remote attackers to cause a denial-of-service condition or execute arbitrary code.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa PT-7528-24TX-HV | <=4.0 | |
| Moxa PT-7528-24TX-HV Firmware | ||
| Moxa PT-7528-24TX-HV | <=4.0 | |
| Moxa PT-7528-24TX-HV | ||
| Moxa PT-7528-24TX-WV | <=4.0 | |
| Moxa PT-7528-24TX-WV Firmware | ||
| Moxa PT-7528-24TX-WV Firmware | <=4.0 | |
| Moxa Pt-7528-24tx-wv-hv Firmware | ||
| Moxa PT-7528-24TX-WV Firmware | <=4.0 | |
| Moxa Pt-7528-24tx-wv-wv Firmware | ||
| Moxa Pt-7528-8mst-16tx-4gsfp-hv-hv Firmware | <=4.0 | |
| Moxa PT-7528-12MSC-12TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-12MSC-12TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa Pt-7528-12msc-12tx-4gsfp-hv-hv Firmware | ||
| Moxa Pt-7528-12msc-12tx-4gsfp-wv Firmware | <=4.0 | |
| Moxa Pt-7528-12msc-12tx-4gsfp-wv Firmware | ||
| Moxa Pt-7528-12msc-12tx-4gsfp-wv Firmware | <=4.0 | |
| Moxa PT-7528-12MSC-12TX-4GSFP-WV | ||
| Moxa PT-7528-12MST-12TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-12MST-12TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-12MST-12TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa Pt-7528-12mst-12tx-4gsfp-hv-hv Firmware | ||
| Moxa PT-7528-12MST-12TX-4GSFP-WV Firmware | <=4.0 | |
| Moxa PT-7528-12MST-12TX-4GSFP-WV Firmware | ||
| Moxa PT-7528-12MST-12TX-4GSFP-WV Firmware | <=4.0 | |
| Moxa PT-7528-12MST-12TX-4GSFP-WV | ||
| Moxa PT-7528-20MSC-4TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-16MSC-8TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-16MSC-8TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-16MSC-8TX-4GSFP-HV | ||
| Moxa PT-7528-16MSC-8TX-4GSFP-WV-WV Firmware | <=4.0 | |
| Moxa PT-7528-16MSC-8TX-4GSFP-WV Firmware | ||
| Moxa PT-7528-16MSC-8TX-4GSFP-WV | <=4.0 | |
| Moxa PT-7528-16MSC-8TX-4GSFP-WV-WV Firmware | ||
| Moxa PT-7528 | <=4.0 | |
| Moxa Pt-7528-16mst-8tx-4gsfp-hv Firmware | ||
| Moxa PT-7528 | <=4.0 | |
| Moxa PT-7528 | ||
| Moxa PT-7528 | <=4.0 | |
| Moxa PT-7528-16MST-8TX-4GSFP-WV Firmware | ||
| Moxa PT-7528 | <=4.0 | |
| Moxa PT-7528-16MST-8TX-4GSFP-WV | ||
| Moxa PT-7528-20MSC-4TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-20MSC-4TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-20MSC-4TX-4GSFP-HV | <=4.0 | |
| Moxa PT-7528-20MSC-4TX-4GSFP-HV | ||
| Moxa PT-7528-20MSC-4TX-4GSFP-WV Firmware | <=4.0 | |
| Moxa PT-7528-20MSC-4TX-4GSFP-WV Firmware | ||
| Moxa Pt-7528-20msc-4tx-4gsfp-wv Firmware | <=4.0 | |
| Moxa Pt-7528-20msc-4tx-4gsfp-wv Firmware | ||
| Moxa PT-7528-20MST-4TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-20MST-4TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-20mst-4tx-4gsfp-hv Firmware | <=4.0 | |
| Moxa PT-7528-20MST-4TX-4GSFP-HV | ||
| Moxa PT-7528-20mst-4tx-4gsfp-wv Firmware | <=4.0 | |
| Moxa PT-7528-20MST-4TX-4GSFP-WV Firmware | ||
| Moxa PT-7528-20MST-4TX-4GSFP-WV Firmware | <=4.0 | |
| Moxa Pt-7528-20mst-4tx-4gsfp-wv Firmware | ||
| Moxa PT-7528-8MSC-16TX-4GSFP-HV | <=4.0 | |
| Moxa PT-7528-8MSC-16TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-8MSC-16TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-8MSC-16TX-4GSFP-HV | ||
| Moxa PT-7528-8MST-16TX-4GSFP-WV Firmware | <=4.0 | |
| Moxa PT-7528-8MSC-16TX-4GSFP-WV Firmware | ||
| Moxa PT-7528-8MSC-16TX-4GSFP-WV Firmware | <=4.0 | |
| Moxa Pt-7528-8msc-16tx-4gsfp-wv-wv Firmware | ||
| Moxa Pt-7528-8mst-16tx-4gsfp-hv-hv Firmware | <=4.0 | |
| Moxa PT-7528 Series | ||
| Moxa PT-7528 Firmware | <=4.0 | |
| Moxa PT-7528-8MST-16TX-4GSFP-HV | ||
| Moxa PT-7528-8MST-16TX-4GSFP-WV | <=4.0 | |
| Moxa PT-7528-8MST-16TX-4GSFP-WV Firmware | ||
| Moxa Pt-7528-8mst-16tx-4gsfp-wv Firmware | <=4.0 | |
| Moxa PT-7528 | ||
| Moxa PT-7528-8SSC-16TX-4GSFP-HV Firmware | <=4.0 | |
| Moxa PT-7528-8SSC-16TX-4GSFP-HV Firmware | ||
| Moxa PT-7528-8SSC-16TX-4GSFP-WV-WV Firmware | <=4.0 | |
| Moxa PT-7528-8SSC-16TX-4GSFP-WV-WV Firmware | ||
| Moxa PT-7828-F-24 | <=3.9 | |
| Moxa PT-7828-F-24 Firmware | ||
| Moxa PT-7828-F-24 Firmware | <=3.9 | |
| Moxa PT-7828-F-24 Firmware | ||
| Moxa PT-7828-F-24 Firmware | <=3.9 | |
| Moxa PT-7828-F-24-HV Firmware | ||
| Moxa PT-7828-F-48-HV Firmware | <=3.9 | |
| Moxa PT-7828-F-48-HV Firmware | ||
| Moxa PT-7828-F-48-48 Firmware | <=3.9 | |
| Moxa Pt-7828-f-48-48 Firmware | ||
| Moxa PT-7828-F-48-HV Firmware | <=3.9 | |
| Moxa PT-7828-F-48-HV Firmware | ||
| Moxa PT-7828-F-HV-HV Firmware | <=3.9 | |
| Moxa PT-7828-F-HV Firmware | ||
| Moxa PT-7828-F-HV-HV | <=3.9 | |
| Moxa PT-7828-F-HV | ||
| Moxa PT-7828-R-24 Firmware | <=3.9 | |
| Moxa PT-7828-R-24 Firmware | ||
| Moxa PT-7828-R-24 Firmware | <=3.9 | |
| Moxa PT-7828-R-24-24 Firmware | ||
| Moxa PT-7828-R-24-HV Firmware | <=3.9 | |
| Moxa PT-7828-R-24-HV Firmware | ||
| Moxa PT-7828-R-48-HV Firmware | <=3.9 | |
| Moxa PT-7828-R-48-48 Firmware | ||
| Moxa PT-7828-R-48 Firmware | <=3.9 | |
| Moxa PT-7828-R-48-48 Firmware | ||
| Moxa PT-7828-R-48-HV Firmware | <=3.9 | |
| Moxa PT-7828-R-48-HV Firmware | ||
| Moxa Pt-7828-r-hv-hv Firmware | <=3.9 | |
| Moxa PT-7828-R-HV Firmware | ||
| Moxa PT-7828-R-HV Firmware | <=3.9 | |
| Moxa PT-7828-R-HV Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-6989?
CVE-2020-6989 is classified as a high severity vulnerability due to its potential to cause denial-of-service or execute arbitrary code remotely.
How do I fix CVE-2020-6989?
To fix CVE-2020-6989, it is recommended to update to Moxa PT-7528 series firmware version 4.1 or higher and PT-7828 series firmware version 4.0 or higher.
What devices are affected by CVE-2020-6989?
CVE-2020-6989 affects Moxa PT-7528 series firmware versions 4.0 or lower and PT-7828 series firmware versions 3.9 or lower.
What type of attack can exploit CVE-2020-6989?
CVE-2020-6989 can be exploited through a buffer overflow attack in the web server, allowing attackers to potentially execute arbitrary code.
Is there a patch available for CVE-2020-6989?
Yes, Moxa has released firmware updates that address the vulnerability for affected devices.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/severity
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/moxa
- canonical/moxa pt-7528-24tx-hv
- version/moxa pt-7528-24tx-hv/4.0
- canonical/moxa pt-7528-24tx-hv firmware
- canonical/moxa pt-7528-24tx-wv
- version/moxa pt-7528-24tx-wv/4.0
- canonical/moxa pt-7528-24tx-wv firmware
- version/moxa pt-7528-24tx-wv firmware/4.0
- canonical/moxa pt-7528-24tx-wv-hv firmware
- canonical/moxa pt-7528-24tx-wv-wv firmware
- canonical/moxa pt-7528-8mst-16tx-4gsfp-hv-hv firmware
- version/moxa pt-7528-8mst-16tx-4gsfp-hv-hv firmware/4.0
- canonical/moxa pt-7528-12msc-12tx-4gsfp-hv firmware
- version/moxa pt-7528-12msc-12tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-12msc-12tx-4gsfp-hv-hv firmware
- canonical/moxa pt-7528-12msc-12tx-4gsfp-wv firmware
- version/moxa pt-7528-12msc-12tx-4gsfp-wv firmware/4.0
- canonical/moxa pt-7528-12msc-12tx-4gsfp-wv
- canonical/moxa pt-7528-12mst-12tx-4gsfp-hv firmware
- version/moxa pt-7528-12mst-12tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-12mst-12tx-4gsfp-hv-hv firmware
- canonical/moxa pt-7528-12mst-12tx-4gsfp-wv firmware
- version/moxa pt-7528-12mst-12tx-4gsfp-wv firmware/4.0
- canonical/moxa pt-7528-12mst-12tx-4gsfp-wv
- canonical/moxa pt-7528-20msc-4tx-4gsfp-hv firmware
- version/moxa pt-7528-20msc-4tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-16msc-8tx-4gsfp-hv firmware
- version/moxa pt-7528-16msc-8tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-16msc-8tx-4gsfp-hv
- canonical/moxa pt-7528-16msc-8tx-4gsfp-wv-wv firmware
- version/moxa pt-7528-16msc-8tx-4gsfp-wv-wv firmware/4.0
- canonical/moxa pt-7528-16msc-8tx-4gsfp-wv firmware
- canonical/moxa pt-7528-16msc-8tx-4gsfp-wv
- version/moxa pt-7528-16msc-8tx-4gsfp-wv/4.0
- canonical/moxa pt-7528
- version/moxa pt-7528/4.0
- canonical/moxa pt-7528-16mst-8tx-4gsfp-hv firmware
- canonical/moxa pt-7528-16mst-8tx-4gsfp-wv firmware
- canonical/moxa pt-7528-16mst-8tx-4gsfp-wv
- canonical/moxa pt-7528-20msc-4tx-4gsfp-hv
- version/moxa pt-7528-20msc-4tx-4gsfp-hv/4.0
- canonical/moxa pt-7528-20msc-4tx-4gsfp-wv firmware
- version/moxa pt-7528-20msc-4tx-4gsfp-wv firmware/4.0
- canonical/moxa pt-7528-20mst-4tx-4gsfp-hv firmware
- version/moxa pt-7528-20mst-4tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-20mst-4tx-4gsfp-hv
- canonical/moxa pt-7528-20mst-4tx-4gsfp-wv firmware
- version/moxa pt-7528-20mst-4tx-4gsfp-wv firmware/4.0
- canonical/moxa pt-7528-8msc-16tx-4gsfp-hv
- version/moxa pt-7528-8msc-16tx-4gsfp-hv/4.0
- canonical/moxa pt-7528-8msc-16tx-4gsfp-hv firmware
- version/moxa pt-7528-8msc-16tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-8mst-16tx-4gsfp-wv firmware
- version/moxa pt-7528-8mst-16tx-4gsfp-wv firmware/4.0
- canonical/moxa pt-7528-8msc-16tx-4gsfp-wv firmware
- version/moxa pt-7528-8msc-16tx-4gsfp-wv firmware/4.0
- canonical/moxa pt-7528-8msc-16tx-4gsfp-wv-wv firmware
- canonical/moxa pt-7528 series
- canonical/moxa pt-7528 firmware
- version/moxa pt-7528 firmware/4.0
- canonical/moxa pt-7528-8mst-16tx-4gsfp-hv
- canonical/moxa pt-7528-8mst-16tx-4gsfp-wv
- version/moxa pt-7528-8mst-16tx-4gsfp-wv/4.0
- canonical/moxa pt-7528-8ssc-16tx-4gsfp-hv firmware
- version/moxa pt-7528-8ssc-16tx-4gsfp-hv firmware/4.0
- canonical/moxa pt-7528-8ssc-16tx-4gsfp-wv-wv firmware
- version/moxa pt-7528-8ssc-16tx-4gsfp-wv-wv firmware/4.0
- canonical/moxa pt-7828-f-24
- version/moxa pt-7828-f-24/3.9
- canonical/moxa pt-7828-f-24 firmware
- version/moxa pt-7828-f-24 firmware/3.9
- canonical/moxa pt-7828-f-24-hv firmware
- canonical/moxa pt-7828-f-48-hv firmware
- version/moxa pt-7828-f-48-hv firmware/3.9
- canonical/moxa pt-7828-f-48-48 firmware
- version/moxa pt-7828-f-48-48 firmware/3.9
- canonical/moxa pt-7828-f-hv-hv firmware
- version/moxa pt-7828-f-hv-hv firmware/3.9
- canonical/moxa pt-7828-f-hv firmware
- canonical/moxa pt-7828-f-hv-hv
- version/moxa pt-7828-f-hv-hv/3.9
- canonical/moxa pt-7828-f-hv
- canonical/moxa pt-7828-r-24 firmware
- version/moxa pt-7828-r-24 firmware/3.9
- canonical/moxa pt-7828-r-24-24 firmware
- canonical/moxa pt-7828-r-24-hv firmware
- version/moxa pt-7828-r-24-hv firmware/3.9
- canonical/moxa pt-7828-r-48-hv firmware
- version/moxa pt-7828-r-48-hv firmware/3.9
- canonical/moxa pt-7828-r-48-48 firmware
- canonical/moxa pt-7828-r-48 firmware
- version/moxa pt-7828-r-48 firmware/3.9
- canonical/moxa pt-7828-r-hv-hv firmware
- version/moxa pt-7828-r-hv-hv firmware/3.9
- canonical/moxa pt-7828-r-hv firmware
- version/moxa pt-7828-r-hv firmware/3.9