What is CVE-2023-1257?

CVE-2023-1257 is a high-severity vulnerability in Moxa Uc-2100 Series, classified under CWE-1263. CVSS score: 7.6/10. Published 2023-03-07.

How severe is CVE-2023-1257?

High severity. CVSS v3 base score is 7.6 out of 10.

Vulnerability in Moxa Uc-2100 Series

CVE-2023-1257

An attacker with physical access to the affected Moxa UC Series devices can initiate a restart of the device and gain access to its BIOS. Command line options can then be altered, allowing the attacker to access the terminal. From the term…

EPSS: 0.001 (27.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.6 (High). Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H.

Affected products

Moxa Uc-2100 Series — versions V1.3 to V1.5
Moxa Uc-2100-w Series — versions V1.3 to V1.5
Moxa Uc-3100 Series — versions V1.2 to V2.0
Moxa Uc-5100 Series — versions V1.2
Moxa Uc-8100a-me-t Series — versions V1.0 to V1.1
Moxa Uc-8100 Series — versions V1.2
Moxa Uc-8200 Series — versions V1.0 to V2.4
Moxa Uc-8410a Series — versions V2.2
Moxa Uc-8540 Series — versions V1.0 to V1.2
Moxa Uc-8580 Series — versions V1.1

Weakness classification (CWE)

CWE-1263

References

www.cisa.gov/uscert/ics/advisories/icsa-22-333-04

Frequently asked questions

What is CVE-2023-1257?: CVE-2023-1257 is a high-severity vulnerability in Moxa Uc-2100 Series, classified under CWE-1263. CVSS score: 7.6/10. Published 2023-03-07.
How severe is CVE-2023-1257?: High severity. CVSS v3 base score is 7.6 out of 10.