Unrated severityNVD Advisory· Published Feb 15, 2013· Updated Jun 16, 2026
CVE-2012-4694
CVE-2012-4694
Description
Moxa EDR-G903 series routers with firmware before 2.11 do not use a sufficient source of entropy for (1) SSH and (2) SSL keys, which makes it easier for man-in-the-middle attackers to spoof a device or modify a client-server data stream by leveraging knowledge of a key from a product installation elsewhere.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:moxa:edr_g903_firmware:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:moxa:edr_g903_firmware:*:*:*:*:*:*:*:*range: <=2.2
- cpe:2.3:a:moxa:edr_g903_firmware:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:moxa:edr_g903_firmware:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:moxa:edr_g903_firmware:2.1:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2- ics-cert.us-cert.gov/pdf/ICSA-13-042-01.pdfnvdUS Government Resource
- www.moxa.com/support/download.aspxnvd
News mentions
0No linked articles in our index yet.