CVE-2024-9139

Summary

The affected product permits OS command injection through improperly restricted commands, potentially allowing attackers to execute arbitrary code.

Affected Software

VendorProductVersion RangeStatus
MoxaEDR-8010 Series1.0 <= 3.12.1affected
MoxaEDR-G9004 Series1.0 <= 3.12.1affected
MoxaEDR-G9010 Series1.0 <= 3.12.1affected
MoxaEDF-G1002-BP Series1.0 <= 3.12.1affected
MoxaNAT-102 Series1.0 <= 1.0.5affected
MoxaOnCell G4302-LTE4 Series1.0 <= 3.9affected
MoxaTN-4900 Series1.0 <= 3.6affected
MoxaEDR-810 Series1.0 <= 5.12.33affected

Weaknesses

  • CWE-78: CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

Workarounds

  • Minimize network exposure to ensure the device is not accessible from the Internet.
  • Limit web access to trusted IP addresses and networks by using firewall rules or TCP wrappers.
  • Implement IDS or Intrusion Prevention System (IPS) to detect and prevent exploitation attempts. These systems can provide an additional layer of defense by monitoring network traffic for signs of attacks.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References