CVEs (5)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Moxa 108Nport 5110 T Firmware Nport 5110 FirmwareNport 5110a T Firmware+105 moreNov 21, 2024 Oct 3, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially all...Show more |
1Moxa 3Nport Ia5150a Firmware Nport Ia5250a FirmwareNport Ia5450a FirmwareNov 21, 2024 May 14, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Cleartext transmission of sensitive information via Moxa Service in NPort IA5000A series serial devices. Successfully exploiting the vulnerability could enable attackers to read authentication data, device configuration,...Show more |
1Moxa 3Nport Ia5150a Firmware Nport Ia5250a FirmwareNport Ia5450a FirmwareNov 21, 2024 May 14, 2021 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 The NPort IA5000A Series devices use Telnet as one of the network device management services. Telnet does not support the encryption of client-server communications, making it vulnerable to Man-in-the-Middle attacks. |
1Moxa 3Nport Ia5150a Firmware Nport Ia5250a FirmwareNport Ia5450a FirmwareNov 21, 2024 May 14, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-shared key” doesn’t s...Show more |
1Moxa 3Nport Ia5150a Firmware Nport Ia5250a FirmwareNport Ia5450a FirmwareNov 21, 2024 May 14, 2021 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration changed. |