EUVD-2025-205900

🗓️ 31 Dec 2025 07:44:24Reported by EUVDType

Serial device servers expose UART debug code; physical attackers gain unauthenticated access and execute privileged operations.

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2025-15017	31 Dec 202513:55	–	circl
CNNVD	Moxa NPort 5000 Series 安全漏洞	31 Dec 202500:00	–	cnnvd
CVE	CVE-2025-15017	31 Dec 202507:44	–	cve
Cvelist	CVE-2025-15017	31 Dec 202507:44	–	cvelist
NVD	CVE-2025-15017	31 Dec 202508:15	–	nvd
Positive Technologies	PT-2025-54287	31 Dec 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-15017	1 Jan 202608:28	–	redhatcve
Vulnrichment	CVE-2025-15017	31 Dec 202507:44	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "59fe4270-4741-3b7e-bb33-d485239baaaa",
        "vendor": {
          "name": "Moxa"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "01d738f5-b917-3a56-aca2-4e9b155b8533",
        "product": {
          "name": "NPort 5400 Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "0666bbf8-b8a1-31f5-88f4-b5934000c3b1",
        "product": {
          "name": "NPort IA5000 Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "209fe06c-390f-3cf3-86be-0355f3bcc1c9",
        "product": {
          "name": "NPort IA5000A Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "362c2ba7-77f2-34a7-a173-9bcf7d43b1b4",
        "product": {
          "name": "NPort 5600-DT Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "4683a1b9-1c8e-3390-8adb-d7cdca1081a8",
        "product": {
          "name": "NPort 5100A Series "
        },
        "product_version": "1.0"
      },
      {
        "id": "681e7063-2b2f-3725-9fd8-47d64c83623c",
        "product": {
          "name": "NPort 5100 Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "7eb6895b-dc01-36b9-86ba-d04da7f7cc12",
        "product": {
          "name": "NPort 5600 Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "8155c96a-41a6-3c09-9a58-38d670a373c5",
        "product": {
          "name": "NPort 5200 Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "9d163012-b2d4-37d1-9cbf-e55313bfd858",
        "product": {
          "name": "NPort IA5000-G2 Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "d77e5e50-150b-3441-8832-67ae60b030fc",
        "product": {
          "name": "NPort 5200A Series"
        },
        "product_version": "1.0"
      },
      {
        "id": "e6e1ebc0-cb1a-35ae-a53a-1046f4325892",
        "product": {
          "name": "NPort 5000AI-M12 Series"
        },
        "product_version": "1.0"
      }
    ]
  }
]

Source	Link
moxa	www.moxa.com/en/support/product-support/security-advisory/mpsa-257331-cve-2025-15017-active-debug-code-vulnerability-in-serial-device-servers
nvd	www.nvd.nist.gov/vuln/detail/CVE-2025-15017

31 Dec 2025 16:06Current

6.5Medium risk

Vulners AI Score6.5

CVSS 47

EPSS0.00221

SSVC