CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
35.9%
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. User-controlled input is not neutralized before being output to web page (CROSS-SITE SCRIPTING).
Vendor | Product | Version | CPE |
---|---|---|---|
moxa | nport_5100_series_firmware | * | cpe:2.3:o:moxa:nport_5100_series_firmware:*:*:*:*:*:*:*:* |
moxa | nport_5110 | - | cpe:2.3:h:moxa:nport_5110:-:*:*:*:*:*:*:* |
moxa | nport_5130 | - | cpe:2.3:h:moxa:nport_5130:-:*:*:*:*:*:*:* |
moxa | nport_5150 | - | cpe:2.3:h:moxa:nport_5150:-:*:*:*:*:*:*:* |
moxa | nport_5200_series_firmware | * | cpe:2.3:o:moxa:nport_5200_series_firmware:*:*:*:*:*:*:*:* |
moxa | nport_5210 | - | cpe:2.3:h:moxa:nport_5210:-:*:*:*:*:*:*:* |
moxa | nport_5230 | - | cpe:2.3:h:moxa:nport_5230:-:*:*:*:*:*:*:* |
moxa | nport_5232 | - | cpe:2.3:h:moxa:nport_5232:-:*:*:*:*:*:*:* |
moxa | nport_5232i | - | cpe:2.3:h:moxa:nport_5232i:-:*:*:*:*:*:*:* |
moxa | nport_5400_series_firmware | * | cpe:2.3:o:moxa:nport_5400_series_firmware:*:*:*:*:*:*:*:* |
[
{
"product": "Moxa NPort",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Moxa NPort"
}
]
}
]
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
Confidence
High
EPSS
Percentile
35.9%