Moxa PT-7528和PT-7828加密问题漏洞
CVE编号
CVE-2020-6987利用情况
暂无补丁情况
N/A披露时间
2020-03-25漏洞描述
Moxa PT-7528和Moxa PT-7828都是中国台湾摩莎(Moxa)公司的一款管理型机架式以太网交换机。 使用4.0及之前版本固件的Moxa PT-7528系列和使用3.9及之前版本固件的PT-7828系列中存在加密问题漏洞,该漏洞源于程序使用较弱的加密算法。攻击者可利用该漏洞获取敏感信息。解决建议
厂商已发布了漏洞修复程序,请及时关注更新:https://www.moxa.com/en/support/support/security-advisory/pt-7528-7828-ethernet-switches-vulnerabilities
参考链接 |
|
|---|---|
| https://www.us-cert.gov/ics/advisories/icsa-20-056-03 |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12msc-12tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12msc-12tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12msc-12tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12msc-12tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12mst-12tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12mst-12tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12mst-12tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-12mst-12tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16msc-8tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16msc-8tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16msc-8tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16msc-8tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16mst-8tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16mst-8tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16mst-8tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-16mst-8tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20msc-4tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20msc-4tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20msc-4tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20msc-4tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20mst-4tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20mst-4tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20mst-4tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-20mst-4tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-24tx-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-24tx-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-24tx-wv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-24tx-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-24tx-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8msc-16tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8msc-16tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8msc-16tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8msc-16tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8mst-16tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8mst-16tx-4gsfp-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8mst-16tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8mst-16tx-4gsfp-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8ssc-16tx-4gsfp-hv-hv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7528-8ssc-16tx-4gsfp-wv-wv_firmware | * | Up to (including) 4.0 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-24-24_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-24-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-24_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-48-48_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-48-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-48_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-hv-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-f-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-24-24_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-24-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-24_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-48-48_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-48-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-48_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-hv-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | moxa | pt-7828-r-hv_firmware | * | Up to (including) 3.9 | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12msc-12tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12msc-12tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12msc-12tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12msc-12tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12mst-12tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12mst-12tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12mst-12tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-12mst-12tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16msc-8tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16msc-8tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16msc-8tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16msc-8tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16mst-8tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16mst-8tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16mst-8tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-16mst-8tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20msc-4tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20msc-4tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20msc-4tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20msc-4tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20mst-4tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20mst-4tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20mst-4tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-20mst-4tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-24tx-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-24tx-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-24tx-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-24tx-wv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-24tx-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8msc-16tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8msc-16tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8msc-16tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8msc-16tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8mst-16tx-4gsfp-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8mst-16tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8mst-16tx-4gsfp-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8mst-16tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8ssc-16tx-4gsfp-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7528-8ssc-16tx-4gsfp-wv-wv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-24-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-24-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-48 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-48-48 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-48-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-f-hv-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-24-24 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-24-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-48 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-48-48 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-48-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-hv | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | moxa | pt-7828-r-hv-hv | - | - | |||||
- 攻击路径 网络
- 攻击复杂度 低
- 权限要求 无
- 影响范围 未更改
- 用户交互 无
- 可用性 无
- 保密性 高
- 完整性 无
| CWE-ID | 漏洞类型 |
| CWE-327 | 使用已被攻破或存在风险的密码学算法 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论