CVE-2020-27185

🗓️ 14 May 2021 12:06:20Reported by KasperskyType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 37 Views

Cleartext transmission vulnerability in Moxa Service for NPort IA5000A series devices

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2020-27185	14 May 202113:15	–	attackerkb
CNNVD	MOXA NPort IA5150A Series 安全漏洞	28 Apr 202100:00	–	cnnvd
CNVD	Moxa NPort IA5150A Series Sensitive Information Explicit Transmission Vulnerability	7 May 202100:00	–	cnvd
Cvelist	CVE-2020-27185	14 May 202112:06	–	cvelist
EUVD	EUVD-2020-19708	7 Oct 202500:30	–	euvd
NVD	CVE-2020-27185	14 May 202113:15	–	nvd
Prion	Authentication flaw	14 May 202113:15	–	prion
RedhatCVE	CVE-2020-27185	22 May 202516:34	–	redhatcve
Tenable Nessus	Moxa NPort IA5000A Series Cleartext Transmission of Sensitive Information (CVE-2020-27185)	2 Aug 202300:00	–	nessus

NVD

Node

moxa nport_ia5150a_firmwareRange≤1.4

AND

moxa nport_ia5150aMatch-

Node

moxa nport_ia5250a_firmwareRange≤1.4

AND

moxa nport_ia5250aMatch-

Node

moxa nport_ia5450a_firmwareRange≤1.7

AND

moxa nport_ia5450aMatch-

[
  {
    "product": "NPort IA5000A Series with Moxa Service enabled",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ]
  }
]

Source	Link
ics-cert	www.ics-cert.kaspersky.com/advisories/klcert-advisories/2021/05/11/klcert-20-021%2C
moxa	www.moxa.com/en/support/product-support/security-advisory/nport-ia5000a-serial-device-servers-vulnerabilities

21 Nov 2024 05:20Current

7.3High risk

Vulners AI Score7.3

CVSS 25

CVSS 3.17.5

EPSS0.00201

CWE-319