Vulnerabilities (CVE)

Filtered by vendor Moxa Subscribe

Filtered by product Nport Ia5250a

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-27150	1 Moxa	6 Nport Ia5150a, Nport Ia5150a Firmware, Nport Ia5250a and 3 more	2021-05-24	5.0 MEDIUM	7.5 HIGH
In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-shared key” doesn’t set.
CVE-2020-27185	1 Moxa	6 Nport Ia5150a, Nport Ia5150a Firmware, Nport Ia5250a and 3 more	2021-05-21	5.0 MEDIUM	7.5 HIGH
Cleartext transmission of sensitive information via Moxa Service in NPort IA5000A series serial devices. Successfully exploiting the vulnerability could enable attackers to read authentication data, device configuration, and other sensitive data transmitted over Moxa Service.