Lucene search
+L

EUVD-2025-34849

🗓️ 17 Oct 2025 02:07:25Reported by EUVDType 
euvd
 euvd
🔗 euvd.enisa.europa.eu👁 4 Views

Incorrect Authorization in Moxa devices allows bypassing privilege checks to access admin APIs.

Related
Affected
Refs
ReporterTitlePublishedViews
Family
bdu_fstec
The vulnerability of the application software interface of Moxa network devices of the EDR-G9010, EDR-8010, EDF-G1002-BP, TN-4900, NAT-102, NAT-108, and OnCell G4302-LTE4 series lies in the use of rigidly encoded credentials. This allows a malicious individual to gain full access to the device.
20 Oct 202500:00
bdu_fstec
bdu_fstec
The vulnerability of Moxa’s network device software, related to errors in privilege management, allows a hacker to gain full control over the device.
21 Oct 202500:00
bdu_fstec
bdu_fstec
The vulnerability of Moxa’s network device software-related microprogramming systems, related to errors in privilege management, allows attackers to escalate their privileges.
21 Oct 202500:00
bdu_fstec
bdu_fstec
The vulnerability of Moxa network device software of the EDR-G9010, EDR-8010, EDF-G1002-BP, TN-4900, NAT-102, NAT-108, and OnCell G4302-LTE4 series is related to deficiencies in authentication mechanisms. This allows unauthorized individuals to gain access to protected information.
21 Oct 202500:00
bdu_fstec
bdu_fstec
The vulnerability of Moxa network device software of the EDR-G9010, EDR-8010, EDF-G1002-BP, TN-4900, NAT-102, NAT-108, and OnCell G4302-LTE4 series is related to errors in privilege management. This vulnerability allows attackers to compromise the confidentiality and accessibility of protected information.
21 Oct 202500:00
bdu_fstec
circl
CVE-2025-6892
17 Oct 202513:34
circl
circl
CVE-2025-6893
17 Oct 202510:34
circl
circl
CVE-2025-6894
17 Oct 202513:34
circl
circl
CVE-2025-6949
17 Oct 202509:04
circl
circl
CVE-2025-6950
17 Oct 202507:34
circl
Rows per page
[
  {
    "enisaIdVendor": [
      {
        "id": "7f193ccd-9455-3cf9-a574-e65ef8376c14",
        "vendor": {
          "name": "Moxa"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "000f6929-32a2-3408-be94-30361c294ecc",
        "product": {
          "name": "TN-4900 Series"
        },
        "product_version": ""
      },
      {
        "id": "350c9c73-4799-3c2e-a873-a95df5317961",
        "product": {
          "name": "EDR-G9010 Series"
        },
        "product_version": "1.0 ≤3.14"
      },
      {
        "id": "45882aab-a275-3f15-b95f-c5fef3d846c6",
        "product": {
          "name": "EDR-G9010 Series"
        },
        "product_version": ""
      },
      {
        "id": "4e12eb7c-8d7d-3ca4-a849-9aace0342c6b",
        "product": {
          "name": "EDR-8010 Series"
        },
        "product_version": "1.0 ≤3.17"
      },
      {
        "id": "55056491-5c9e-3bbb-b4cf-2cc859c3232f",
        "product": {
          "name": "OnCell G4302-LTE4 Series"
        },
        "product_version": ""
      },
      {
        "id": "6c3ecbf7-7161-3cf8-89d4-56e506f006e7",
        "product": {
          "name": "NAT-108 Series"
        },
        "product_version": ""
      },
      {
        "id": "79b0da5c-d861-33ee-aa42-a7b883509f94",
        "product": {
          "name": "EDF-G1002-BP Series"
        },
        "product_version": ""
      },
      {
        "id": "a09384ea-db5e-3230-a309-2472a8ce4289",
        "product": {
          "name": "TN-4900 Series"
        },
        "product_version": "1.0 ≤3.14"
      },
      {
        "id": "a0f59bdd-eb99-36c3-b559-119cc249a068",
        "product": {
          "name": "NAT-102 Series"
        },
        "product_version": "1.0 ≤3.17"
      },
      {
        "id": "b73870d8-f080-32a6-9728-2e2cb8f3858d",
        "product": {
          "name": "NAT-102 Series"
        },
        "product_version": ""
      },
      {
        "id": "c1a15997-5e3a-39c0-b71f-1b798288f557",
        "product": {
          "name": "NAT-108 Series"
        },
        "product_version": "1.0 ≤3.16"
      },
      {
        "id": "c7cf50c2-04ed-36b5-8df7-96a5d5574d1c",
        "product": {
          "name": "OnCell G4302-LTE4 Series"
        },
        "product_version": "1.0 ≤3.13"
      },
      {
        "id": "cd228b55-1e13-3072-a967-5cf76f7ca25e",
        "product": {
          "name": "EDR-8010 Series"
        },
        "product_version": ""
      },
      {
        "id": "f17b8f49-01c1-3cc7-b7eb-f82aec426f24",
        "product": {
          "name": "EDF-G1002-BP Series"
        },
        "product_version": "1.0 ≤3.17"
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Oct 2025 13:46Current
6.3Medium risk
Vulners AI Score6.3
CVSS 48.7 - 9.9
EPSS0.00649
SSVC
4