Vulnerability Details CVE-2021-33823
An issue was discovered on MOXA Mgate MB3180 Version 2.1 Build 18113012. Attacker could send a huge amount of TCP SYN packet to make web service's resource exhausted. Then the web server is denial-of-service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 66.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- https://github.com/Jian-Xian/CVE-POC/blob/master/CVE-2021-33823.md
- https://www.moxa.com/en/products/industrial-edge-connectivity/protocol-gateways/modbus-tcp-gateways/mgate-mb3180-mb3280-mb3480-series
- https://github.com/Jian-Xian/CVE-POC/blob/master/CVE-2021-33823.md
- https://www.moxa.com/en/products/industrial-edge-connectivity/protocol-gateways/modbus-tcp-gateways/mgate-mb3180-mb3280-mb3480-series
Products affected by CVE-2021-33823
-
cpe:2.3:h:moxa:mgate_mb3180:-
-
cpe:2.3:o:moxa:mgate_mb3180_firmware:2.1