Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2024-9404

UNKNOWN
Published 2024-12-04T03:54:32.073Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-9404. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
5.3
/10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Base Score Metrics
Exploitability: N/A Impact: N/A

EPSS Score

v2025.03.14
0.002
probability
of exploitation in the wild

There is a 0.2% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-06-25
Exploit Probability
Percentile: 0.377
Higher than 37.7% of all CVEs

Attack Vector Metrics

Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED

Impact Metrics

Confidentiality
NONE
Integrity
NONE
Availability
LOW

Description

This vulnerability could lead to denial-of-service or service crashes. Exploitation of the moxa_cmd service, because of insufficient input validation, allows attackers to disrupt operations. If exposed to public networks, the vulnerability poses a significant remote threat, potentially allowing attackers to shut down affected systems.

Available Exploits

No exploits available for this CVE.

Related News

Moxa PT Switches Vulnerable to CVE-2024-9404 Denial-of-Service Attack

Moxa, a leading provider of industrial networking solutions, has issued a security advisory regarding a critical denial-of-service (DoS) The post Moxa PT Switches Vulnerable to CVE-2024-9404 Denial-of-Service Attack appeared first on Cybersecurity News.

SecurityOnline.info 2025-02-24 01:31
Read More

Affected Products

Moxa

VPort 07-3 Series

Affected Versions:

1.0
Moxa

EDS-608 Series

Affected Versions:

1.0
Moxa

EDS-611 Series

Affected Versions:

1.0
Moxa

EDS-616 Series

Affected Versions:

1.0
Moxa

EDS-619 Series

Affected Versions:

1.0
Moxa

EDS-405A Series

Affected Versions:

1.0
Moxa

EDS-408A Series

Affected Versions:

1.0
Moxa

EDS-505A Series

Affected Versions:

1.0
Moxa

EDS-508A Series

Affected Versions:

1.0
Moxa

EDS-510A Series

Affected Versions:

1.0
Moxa

EDS-516A Series

Affected Versions:

1.0
Moxa

EDS-518A Series

Affected Versions:

1.0
Moxa

EDS-G509 Series

Affected Versions:

1.0
Moxa

EDS-P510 Series

Affected Versions:

1.0
Moxa

EDS-P510A Series

Affected Versions:

1.0
Moxa

EDS-510E Series

Affected Versions:

1.0
Moxa

EDS-518E Series

Affected Versions:

1.0
Moxa

EDS-528E Series

Affected Versions:

1.0
Moxa

EDS-G508E Series

Affected Versions:

1.0
Moxa

EDS-G512E Series

Affected Versions:

1.0
Moxa

EDS-G516E Series

Affected Versions:

1.0
Moxa

EDS-P506E Series

Affected Versions:

1.0
Moxa

ICS-G7526A Series

Affected Versions:

1.0
Moxa

ICS-G7528A Series

Affected Versions:

1.0
Moxa

ICS-G7748A Series

Affected Versions:

1.0
Moxa

ICS-G7750A Series

Affected Versions:

1.0
Moxa

ICS-G7752A Series

Affected Versions:

1.0
Moxa

ICS-G7826A Series

Affected Versions:

1.0
Moxa

ICS-G7828A Series

Affected Versions:

1.0
Moxa

ICS-G7848A Series

Affected Versions:

1.0
Moxa

ICS-G7850A Series

Affected Versions:

1.0
Moxa

ICS-G7852A Series

Affected Versions:

1.0
Moxa

IKS-G6524A Series

Affected Versions:

1.0
Moxa

IKS-6726A Series

Affected Versions:

1.0
Moxa

IKS-6728A Series

Affected Versions:

1.0
Moxa

IKS-G6824A Series

Affected Versions:

1.0
Moxa

SDS-3006 Series

Affected Versions:

1.0
Moxa

SDS-3008 Series

Affected Versions:

1.0
Moxa

SDS-3010 Series

Affected Versions:

1.0
Moxa

SDS-3016 Series

Affected Versions:

1.0
Moxa

SDS-G3006 Series

Affected Versions:

1.0
Moxa

SDS-G3008 Series

Affected Versions:

1.0
Moxa

SDS-G3010 Series

Affected Versions:

1.0
Moxa

SDS-G3016 Series

Affected Versions:

1.0
Moxa

PT-7728 Series

Affected Versions:

1.0
Moxa

PT-7828 Series

Affected Versions:

1.0
Moxa

PT-G503 Series

Affected Versions:

1.0
Moxa

PT-G510 Series

Affected Versions:

1.0

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-2gj6-9934-w9r6

Advisory Details

Moxa’s IP Cameras are affected by a medium-severity vulnerability, CVE-2024-9404, which could lead to a denial-of-service condition or cause a service crash. This vulnerability allows attackers to exploit the Moxa service, commonly referred to as moxa_cmd, originally designed for deployment. Because of insufficient input validation, this service may be manipulated to trigger a denial-of-service. This vulnerability poses a significant remote threat if the affected products are exposed to publicly accessible networks. Attackers could potentially disrupt operations by shutting down the affected systems. Due to the critical nature of this security risk, we strongly recommend taking immediate action to prevent potential exploitation.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-9404
WEB https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240930-cve-2024-9404-denial-of-service-vulnerability-identified-in-the-vport-07-3-series
WEB https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240931-cve-2024-9404-denial-of-service-vulnerability-identified-in-multiple-eds,-ics,-iks,-and-sds-switches
WEB https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240933-cve-2024-9404-denial-of-service-vulnerability-identified-in-multiple-pt-switches

Advisory provided by GitHub Security Advisory Database. Published: December 4, 2024, Modified: February 20, 2025

References

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240930-cve-2024-9404-denial-of-service-vulnerability-identified-in-the-vport-07-3-series
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240931-cve-2024-9404-denial-of-service-vulnerability-identified-in-multiple-eds,-ics,-iks,-and-sds-switches
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-240933-cve-2024-9404-denial-of-service-vulnerability-identified-in-multiple-pt-switches
Published: 2024-12-04T03:54:32.073Z
Last Modified: 2025-02-20T01:56:28.176Z
Copied to clipboard!