CVE-2017-14435

Name of the Vulnerable Software and Affected Versions: Moxa EDR-810 version 4.1 build 17030317

Description: A denial of service issue exists in the web server functionality. It can be triggered by a specially crafted HTTP URI, specifically a GET request to "/MOXA CFG.ini" without a cookie header, causing a null pointer dereference.

Recommendations: For Moxa EDR-810 version 4.1 build 17030317, consider restricting access to the "/MOXA CFG.ini" endpoint until a fix is available. Avoid sending GET requests to this endpoint without a cookie header to minimize the risk of triggering the denial of service.