EUVD-2026-25757

🗓️ 27 Apr 2026 02:56:34Reported by EUVDType

Unauthenticated attacker can cause denial of service on Moxa Router web interface via buffer overflow.

Reporter	Title	Published	Views	Family All 19
ATTACKERKB	CVE-2026-3868	27 Apr 202602:56	–	attackerkb
ATTACKERKB	CVE-2026-3867	27 Apr 202602:54	–	attackerkb
Circl	CVE-2026-3867	27 Apr 202607:42	–	circl
Circl	CVE-2026-3868	27 Apr 202607:42	–	circl
CNNVD	Moxa EDR-8010 Series和Moxa EDR-G9010 Series 安全漏洞	27 Apr 202600:00	–	cnnvd
CNNVD	Moxa EDR-8010 Series和Moxa EDR-G9010 Series 安全漏洞	27 Apr 202600:00	–	cnnvd
CVE	CVE-2026-3867	27 Apr 202602:54	–	cve
CVE	CVE-2026-3868	27 Apr 202602:56	–	cve
Cvelist	CVE-2026-3867	27 Apr 202602:54	–	cvelist
Cvelist	CVE-2026-3868	27 Apr 202602:56	–	cvelist

[
  {
    "enisaIdVendor": [
      {
        "id": "c59a86f1-8117-382a-87cc-595cbc745b12",
        "vendor": {
          "name": "Moxa"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "4530e046-a8dc-30d9-a55f-8c337018ef87",
        "product": {
          "name": "EDR-G9010 Series"
        },
        "product_version": "1.0 ≤3.23.1"
      },
      {
        "id": "6addf292-c77b-3a1e-a687-4ca6eeac41c1",
        "product": {
          "name": "EDR-8010 Series"
        },
        "product_version": ""
      },
      {
        "id": "82ea65d8-2939-3919-8748-600f0f9297fd",
        "product": {
          "name": "EDR-G9010 Series"
        },
        "product_version": ""
      },
      {
        "id": "8a975261-d9a9-3c26-9eff-425d754db7e7",
        "product": {
          "name": "EDR-8010 Series"
        },
        "product_version": "1.0 ≤3.23"
      }
    ]
  }
]

Source	Link
moxa	www.moxa.com/en/support/product-support/security-advisory/mpsa-261521-cve-2026-3867-cve-2026-3868-improper-ownership-management-and-improper-handling-of-length-parameter-incons

27 Apr 2026 02:56Current

5.9Medium risk

Vulners AI Score5.9

CVSS 48.7

EPSS0.00368

SSVC