CVE-2022-27048
HIGHMoxa MGate MB3170 MB3270 MB3280 MB3480 Series Firmware < 4.2 - Man-in-the-Middle Attack
Title source: llmDescription
A vulnerability has been discovered in Moxa MGate which allows an attacker to perform a man-in-the-middle (MITM) attack on the device. This affects MGate MB3170 Series Firmware Version 4.2 or lower. and MGate MB3270 Series Firmware Version 4.2 or lower. and MGate MB3280 Series Firmware Version 4.1 or lower. and MGate MB3480 Series Firmware Version 3.2 or lower.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.moxa.com/en/support/product-support/security-advisory/mgate-mb3170-mb3270-mb3280-mb3480-protocol-gateways-vulnerability
Scores
CVSS v3
7.4
EPSS
0.0031
EPSS Percentile
54.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Details
Status
published
Products (20)
moxa/mgate_mb3170-m-sc-t_firmware
< 4.2
moxa/mgate_mb3170-m-sc_firmware
< 4.2
moxa/mgate_mb3170-m-st-t_firmware
< 4.2
moxa/mgate_mb3170-m-st_firmware
< 4.2
moxa/mgate_mb3170-s-sc-t_firmware
< 4.2
moxa/mgate_mb3170-s-sc_firmware
< 4.2
moxa/mgate_mb3170-t_firmware
< 4.2
moxa/mgate_mb3170_firmware
< 4.2
moxa/mgate_mb3170i-m-sc-t_firmware
< 4.2
moxa/mgate_mb3170i-m-sc_firmware
< 4.2
... and 10 more
Published
Apr 15, 2022
Tracked Since
Feb 18, 2026