Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
moxa vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-27150
In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-shared key” doesn’t set.
Moxa Nport Ia5150a Firmware
Moxa Nport Ia5250a Firmware
Moxa Nport Ia5450a Firmware
5
CVSSv2
CVE-2016-9346
An issue exists in Moxa MiiNePort E1 versions before 1.8, E2 versions before 1.4, and E3 versions before 1.1. Configuration data are stored in a file that is not encrypted.
Moxa Miineport E1 Firmware
Moxa Miineport E2 Firmware
Moxa Miineport E3 Firmware
7.8
CVSSv2
CVE-2019-19707
On Moxa EDS-G508E, EDS-G512E, and EDS-G516E devices (with firmware up to and including 6.0), denial of service can occur via PROFINET DCE-RPC endpoint discovery packets.
Moxa Eds-g508e Firmware
Moxa Eds-g512e Firmware
Moxa Eds-g516e Firmware
5
CVSSv2
CVE-2021-4161
The affected products contain vulnerable firmware, which could allow an malicious user to sniff the traffic and decrypt login credential details. This could give an attacker admin rights through the HTTP web server.
Moxa Mgate Mb3180 Firmware
Moxa Mgate Mb3280 Firmware
Moxa Mgate Mb3480 Firmware
4
CVSSv2
CVE-2020-27149
By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration changed.
Moxa Nport Ia5150a Firmware
Moxa Nport Ia5250a Firmware
Moxa Nport Ia5450a Firmware
4.3
CVSSv2
CVE-2020-27184
The NPort IA5000A Series devices use Telnet as one of the network device management services. Telnet does not support the encryption of client-server communications, making it vulnerable to Man-in-the-Middle attacks.
Moxa Nport Ia5150a Firmware
Moxa Nport Ia5250a Firmware
Moxa Nport Ia5450a Firmware
5
CVSSv2
CVE-2020-27185
Cleartext transmission of sensitive information via Moxa Service in NPort IA5000A series serial devices. Successfully exploiting the vulnerability could enable malicious users to read authentication data, device configuration, and other sensitive data transmitted over Moxa Servic...
Moxa Nport Ia5150a Firmware
Moxa Nport Ia5250a Firmware
Moxa Nport Ia5450a Firmware
10
CVSSv2
CVE-2020-6985
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, these devices use a hard-coded service code for access to the console.
Moxa Pt-7528-24tx-hv Firmware
Moxa Pt-7528-24tx-hv-hv Firmware
Moxa Pt-7528-24tx-wv Firmware
Moxa Pt-7528-24tx-wv-hv Firmware
Moxa Pt-7528-24tx-wv-wv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-hv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-wv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-hv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-wv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-hv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-wv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-hv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-wv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-20msc-4tx-4gsfp-hv Firmware
7.5
CVSSv2
CVE-2020-6995
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, the application utilizes weak password requirements, which may allow an malicious user to gain unauthorized access.
Moxa Pt-7528-24tx-hv Firmware
Moxa Pt-7528-24tx-hv-hv Firmware
Moxa Pt-7528-24tx-wv Firmware
Moxa Pt-7528-24tx-wv-hv Firmware
Moxa Pt-7528-24tx-wv-wv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-hv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-wv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-hv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-wv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-hv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-wv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-hv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-wv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-20msc-4tx-4gsfp-hv Firmware
7.5
CVSSv2
CVE-2020-6989
In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, a buffer overflow in the web server allows remote malicious users to cause a denial-of-service condition or execute arbitrary code.
Moxa Pt-7528-24tx-hv Firmware
Moxa Pt-7528-24tx-hv-hv Firmware
Moxa Pt-7528-24tx-wv Firmware
Moxa Pt-7528-24tx-wv-hv Firmware
Moxa Pt-7528-24tx-wv-wv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-hv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-wv Firmware
Moxa Pt-7528-12msc-12tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-hv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-wv Firmware
Moxa Pt-7528-12mst-12tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-hv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-wv Firmware
Moxa Pt-7528-16msc-8tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-hv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-hv-hv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-wv Firmware
Moxa Pt-7528-16mst-8tx-4gsfp-wv-wv Firmware
Moxa Pt-7528-20msc-4tx-4gsfp-hv Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »