CVEs (4)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Moxa 4Nport Iaw5150a 12i/o Firmware Nport Iaw5150a 6i/o FirmwareNport Iaw5250a 12i/o Firmware+1 moreNov 21, 2024 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Five buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to initiate a denial-of-service attack and execute arbitrary code. |
1Moxa 4Nport Iaw5150a 12i/o Firmware Nport Iaw5150a 6i/o FirmwareNport Iaw5250a 12i/o Firmware+1 moreNov 21, 2024 Apr 1, 2022 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Improper input validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to execute commands. |
1Moxa 4Nport Iaw5150a 12i/o Firmware Nport Iaw5150a 6i/o FirmwareNport Iaw5250a 12i/o Firmware+1 moreNov 21, 2024 Apr 1, 2022 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Data can be copied without validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier, which may allow a remote attacker to cause denial-of-service conditions. |
1Moxa 4Nport Iaw5150a 12i/o Firmware Nport Iaw5150a 6i/o FirmwareNport Iaw5250a 12i/o Firmware+1 moreNov 21, 2024 Apr 1, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Two buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O Series firmware version 2.2 or earlier may allow a remote attacker to cause a denial-of-service condition. |