What is CVE-2022-40224?

CVE-2022-40224 is a denial of service vulnerability that exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1.

How can the denial of service vulnerability in Moxa SDS-3008 Series be exploited?

The denial of service vulnerability in Moxa SDS-3008 Series can be exploited by sending a specially-crafted HTTP message header.

What is the severity of CVE-2022-40224?

CVE-2022-40224 has a severity value of 7.5, indicating a high severity.

How can I fix the denial of service vulnerability in Moxa SDS-3008 Series?

To fix the denial of service vulnerability in Moxa SDS-3008 Series, it is recommended to apply the latest firmware update provided by Moxa.

Where can I find more information about CVE-2022-40224?

You can find more information about CVE-2022-40224 on the Talos Intelligence vulnerability report and the Moxa Security Advisory page.

Vulnerability/
CVE-2022-40224

high

7.5

CWE

410

7/2/2023

3/8/2024

CVE-2022-40224

First published: Tue Feb 07 2023(Updated: )

A denial of service vulnerability exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP message header can lead to denial of service. An attacker can send an HTTP request to trigger this vulnerability.

Credit: talos-cna@cisco.com

Affected Software	Affected Version	How to fix
Moxa Sds-3008 Firmware	<=2.1
Moxa SDS-3008
Moxa Sds-3008-t Firmware	<=2.1
Moxa Sds-3008-t

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2022-40224?
CVE-2022-40224 is a denial of service vulnerability that exists in the web server functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1.
How can the denial of service vulnerability in Moxa SDS-3008 Series be exploited?
The denial of service vulnerability in Moxa SDS-3008 Series can be exploited by sending a specially-crafted HTTP message header.
What is the severity of CVE-2022-40224?
CVE-2022-40224 has a severity value of 7.5, indicating a high severity.
How can I fix the denial of service vulnerability in Moxa SDS-3008 Series?
To fix the denial of service vulnerability in Moxa SDS-3008 Series, it is recommended to apply the latest firmware update provided by Moxa.
Where can I find more information about CVE-2022-40224?
You can find more information about CVE-2022-40224 on the Talos Intelligence vulnerability report and the Moxa Security Advisory page.

collector/nvd-index
agent/severity
agent/author
agent/references
agent/weakness
agent/type
agent/event
agent/description
agent/tags
agent/softwarecombine
agent/first-publish-date
agent/last-modified-date
collector/mitre-cve
source/MITRE
vendor/moxa
canonical/moxa sds-3008 firmware
version/moxa sds-3008 firmware/2.1
canonical/moxa sds-3008
canonical/moxa sds-3008-t firmware
version/moxa sds-3008-t firmware/2.1
canonical/moxa sds-3008-t

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.