Forwarded from the National Cybersecurity Information Sharing and Analysis Center: Cybersecurity Alert NISAC-200-202601-00000253

[Content Description]
MOXA recently released a security update patching a vulnerability (CVE-2023-38408) in its OpenSSH Unquoted Search Path mechanism on switches. This vulnerability allows unauthenticated remote attackers to execute arbitrary code remotely via SSH key forwarding. Please verify and patch this vulnerability as soon as possible.

[Affected Platforms]
EDS-G4000 series firmware v4.1 and earlier
RKS-G4000 series firmware v5.0 and earlier

[Recommended Actions]
The official patch has been released. Please refer to the official instructions for updating. The URL is as follows: https://wwwmoxa.com/en/support/product-support/security-advisory/mpsa-256261-cve-2023-38408-openssh-vulnerability-in-ethernet-switches

[References]
1. https://nvd.nist.gov/vuln/detail/CVE-2023-38408
2. https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256261-cve-2023-38408-openssh-vulnerability-in-ethernet-switches