Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

v2406c-kl7-ct-t_firmware

Source -

NVD

CNA CVEs -

0

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

1
Related CVEsRelated VendorsRelated AssignersReports
1Vulnerabilities found
CVE-2026-0714
Assigner-Moxa Inc.
ShareView Details
Assigner-Moxa Inc.
CVSS Score-7||HIGH
EPSS-0.01% / 0.32%
||
7 Day CHG-0.00%
Published-05 Feb, 2026 | 16:58
Updated-18 Feb, 2026 | 17:55
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A physical attack vulnerability exists in certain Moxa industrial computers using TPM-backed LUKS full-disk encryption on Moxa Industrial Linux 3, where the discrete TPM is connected to the CPU via an SPI bus. Exploitation requires invasive physical access, including opening the device and attaching external equipment to the SPI bus to capture TPM communications. If successful, the captured data may allow offline decryption of eMMC contents. This attack cannot be performed through brief or opportunistic physical access and requires extended physical access, possession of the device, appropriate equipment, and sufficient time for signal capture and analysis. Remote exploitation is not possible.

Action-Not Available
Vendor-Moxa Inc.
Product-v2406c-kl7-ct-t_firmwarev2406c-wl7-t_firmwareuc-3434a-t-lte-wifi_firmwareuc-4414a-i-t_firmwarev2406c-wl7-tv2406c-kl5-tuc-4454a-t-5g_firmwareuc-2222a-tuc-4430a-tuc-1222auc-4450a-t-5guc-8220-t-lx-ap-s_firmwareuc-4430a-t_firmwareuc-4410a-t_firmwarev2406c-kl5-t_firmwarev2406c-wl7-ct-tuc-3434a-t-lte-wifiuc-3430a-t-lte-wifiuc-2222a-t_firmwareuc-4450a-t-5g_firmwarev2406c-kl3-t_firmwarev1222-w-ct-t_firmwarev2406c-kl1-tv2406c-wl7-ct-t_firmwareuc-8220-t-lx_firmwarev2406c-kl7-tv1202-ct-tv2406c-kl1-t_firmwareuc-4410a-tv2406c-wl1-tuc-2222a-t-eu_firmwareuc-8220-t-lxuc-2222a-t-us_firmwareuc-8220-t-lx-us-sv2406c-wl5-t_firmwarev1222-ct-tuc-8220-t-lx-eu-s_firmwareuc-3424a-t-lte_firmwarev2406c-kl7-t_firmwareuc-8220-t-lx-us-s_firmwarev2406c-kl7-ct-tuc-4434a-i-t_firmwareuc-2222a-t-usuc-2222a-t-apuc-3430a-t-lte-wifi_firmwarev2406c-kl1-ct-tv2406c-wl3-t_firmwareuc-3420a-t-lteuc-3420a-t-lte_firmwarev2406c-wl1-ct-tuc-2222a-t-ap_firmwareuc-4434a-i-tuc-8220-t-lx-eu-suc-8210-t-lx-s_firmwarev2406c-kl1-ct-t_firmwareuc-2222a-t-euuc-3424a-t-ltev2406c-wl1-t_firmwareuc-4454a-t-5guc-8210-t-lx-suc-1222a_firmwarev2406c-wl1-ct-t_firmwareuc-8220-t-lx-ap-suc-4414a-i-tv2406c-wl3-tv1222-ct-t_firmwarev1222-w-ct-tv2406c-wl5-tv1202-ct-t_firmwarev2406c-kl3-tUC-1200A Series
CWE ID-CWE-319
Cleartext Transmission of Sensitive Information