CVE-2020-6995

Name of the Vulnerable Software and Affected Versions Moxa PT-7528 series firmware versions 4.0 and earlier Moxa PT-7828 series firmware versions 3.9 and earlier

Description The issue is related to weak password requirements in the firmware, which may allow an attacker to gain unauthorized access. Additionally, the vulnerability is associated with a lack of restrictions on excessive authentication attempts, potentially enabling a remote attacker to bypass existing security restrictions using a brute force attack.

Recommendations For Moxa PT-7528 series firmware versions 4.0 and earlier, consider updating to a version higher than 4.0 to strengthen password requirements and mitigate the risk of unauthorized access. For Moxa PT-7828 series firmware versions 3.9 and earlier, consider updating to a version higher than 3.9 to strengthen password requirements and mitigate the risk of unauthorized access. As a temporary workaround, consider implementing additional security measures to restrict excessive authentication attempts and minimize the risk of brute force attacks.