Lucene search
IcscertCVELIST:CVE-2020-25192HistoryDec 23, 2020 - 2:08 p.m.
CVE-2020-25192 MOXA NPort IAW5000A-I/O Series
2020-12-2314:08:28
CWE-200
icscert
www.cve.org
4
moxa
nport iaw5000a-i/o
firmware
unauthorized access
sensitive information
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
34.6%
The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows sensitive information to be displayed without proper authorization.
CNA Affected
[
{
"product": "NPort IAW5000A-I/O",
"vendor": "MOXA",
"versions": [
{
"lessThanOrEqual": "Version 2.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
prion
prion
Authorization
2020-12-23 15:15:00
nessus
nessus
nvd
nvd
CVE-2020-25192
2020-12-23 15:15:15
cve
cve
CVE-2020-25192
2020-12-23 15:15:15
ics
ics
MOXA NPort IAW5000A-I/O Series
2020-10-13 12:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
5.2
Confidence
High
EPSS
0.001
Percentile
34.6%
Related for CVELIST:CVE-2020-25192