Lucene search

[email protected]NVD:CVE-2023-4929

HistoryOct 03, 2023 - 2:15 p.m.

CVE-2023-4929

2023-10-0314:15:11

CWE-354

[email protected]

web.nvd.nist.gov

cve-2023-4929

firmware

integrity

vulnerability

nport 5000 series

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.3%

JSON

All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices.

Affected configurations

NVD

Node

moxanport_5150ai-m12-ct-tMatch-

AND

moxanport_5150ai-m12-ct-t_firmwareRange≤1.5

Node

moxanport_5250ai-m12-ct-tMatch-

AND

moxanport_5250ai-m12-ct-t_firmwareRange≤1.5

Node

moxanport_5150ai-m12-tMatch-

AND

moxanport_5150ai-m12-t_firmwareRange≤1.5

Node

moxanport_5250ai-m12-tMatch-

AND

moxanport_5250ai-m12-t_firmwareRange≤1.5

Node

moxanport_5450ai-m12-ct-tMatch-

AND

moxanport_5450ai-m12-ct-t_firmwareRange≤1.5

Node

moxanport_5150ai-m12Match-

AND

moxanport_5150ai-m12_firmwareRange≤1.5

Node

moxanport_5250ai-m12_firmwareRange≤1.5

AND

moxanport_5250ai-m12Match-

Node

moxanport_5150ai-m12-ct_firmwareRange≤1.5

AND

moxanport_5150ai-m12-ctMatch-

Node

moxanport_5250ai-m12-ct_firmwareRange≤1.5

AND

moxanport_5250ai-m12-ctMatch-

Node

moxanport_5450ai-m12-t_firmwareRange≤1.5

AND

moxanport_5450ai-m12-tMatch-

Node

moxanport_5450ai-m12_firmwareRange≤1.5

AND

moxanport_5450ai-m12Match-

Node

moxanport_5450ai-m12-ct_firmwareRange≤1.5

AND

moxanport_5450ai-m12-ctMatch-

Node

moxanport_5130_firmwareRange≤3.10

AND

moxanport_5130Match-

Node

moxanport_5150_firmwareRange≤3.10

AND

moxanport_5150Match-

Node

moxanport_5110_firmwareRange≤2.10

AND

moxanport_5110Match-

Node

moxanport_5110-t_firmwareRange≤2.10

AND

moxanport_5110-tMatch-

Node

moxanport_5110aMatch-

AND

moxanport_5110a_firmwareRange≤1.6

Node

moxanport_5110a-t_firmwareRange≤1.6

AND

moxanport_5110a-tMatch-

Node

moxanport_5130a_firmwareRange≤1.6

AND

moxanport_5130aMatch-

Node

moxanport_5130a-t_firmwareRange≤1.6

AND

moxanport_5130a-tMatch-

Node

moxanport_5150a_firmwareRange≤1.6

AND

moxanport_5150aMatch-

Node

moxanport_5150a-t_firmwareRange≤1.6

AND

moxanport_5150a-tMatch-

Node

moxanport_5210a_firmwareRange≤1.6

AND

moxanport_5210aMatch-

Node

moxanport_5210a-t_firmwareRange≤1.6

AND

moxanport_5210a-tMatch-

Node

moxanport_5230a_firmwareRange≤1.6

AND

moxanport_5230aMatch-

Node

moxanport_5230a-t_firmwareRange≤1.6

AND

moxanport_5230a-tMatch-

Node

moxanport_5250a_firmwareRange≤1.6

AND

moxanport_5250aMatch-

Node

moxanport_5250a-t_firmwareRange≤1.6

AND

moxanport_5250a-tMatch-

Node

moxanport_5210_firmwareRange≤2.12

AND

moxanport_5210Match-

Node

moxanport_5232_firmwareRange≤2.12

AND

moxanport_5232Match-

Node

moxanport_5210-t_firmwareRange≤2.12

AND

moxanport_5210-tMatch-

Node

moxanport_5232-t_firmwareRange≤2.12

AND

moxanport_5232-tMatch-

Node

moxanport_5230-t_firmwareRange≤2.12

AND

moxanport_5230-tMatch-

Node

moxanport_5232i-t_firmwareRange≤2.12

AND

moxanport_5232i-tMatch-

Node

moxanport_5230_firmwareRange≤2.12

AND

moxanport_5230Match-

Node

moxanport_5232i_firmwareRange≤2.12

AND

moxanport_5232iMatch-

Node

moxanport_5410_firmwareRange2.0–2.9

moxanport_5410_firmwareRange3.2–3.14

AND

moxanport_5410Match-

Node

moxanport_5430_firmwareRange2.0–2.9

moxanport_5430_firmwareRange3.2–3.14

AND

moxanport_5430Match-

Node

moxanport_5450_firmwareRange≤3.14

AND

moxanport_5450Match-

Node

moxanport_5450i_firmwareRange≤3.14

AND

moxanport_5450iMatch-

Node

moxanport_5450-t_firmwareRange≤3.14

AND

moxanport_5450-tMatch-

Node

moxanport_5450i-tMatch-

AND

moxanport_5450i-t_firmwareRange≤3.14

Node

moxanport_5610-8-48v_firmwareRange≤3.11

AND

moxanport_5610-8-48vMatch-

Node

moxanport_5630-16_firmwareRange≤3.11

AND

moxanport_5630-16Match-

Node

moxanport_5630-8_firmwareRange≤3.11

AND

moxanport_5630-8Match-

Node

moxanport_5650-8_firmwareRange≤3.11

AND

moxanport_5650-8Match-

Node

moxanport_5610-16_firmwareRange≤3.11

AND

moxanport_5610-16Match-

Node

moxanport_5650-8-m-sc_firmwareRange≤3.11

AND

moxanport_5650-8-m-scMatch-

Node

moxanport_5650-8-t_firmwareRange≤3.11

AND

moxanport_5650-8-tMatch-

Node

moxanport_5650-16-s-sc_firmwareRange≤3.11

AND

moxanport_5650-16-s-scMatch-

Node

moxanport_5650-8-hv-t_firmwareRange≤3.11

AND

moxanport_5650-8-hv-tMatch-

Node

moxanport_5650-16-tMatch-

AND

moxanport_5650-16-t_firmwareRange≤3.11

Node

moxanport_5650-16Match-

AND

moxanport_5650-16_firmwareRange≤3.11

Node

moxanport_5650-16-hv-tMatch-

AND

moxanport_5650-16-hv-t_firmwareRange≤3.11

Node

moxanport_5610-8_firmwareRange≤3.11

AND

moxanport_5610-8Match-

Node

moxanport_5610-16-48v_firmwareRange≤3.11

AND

moxanport_5610-16-48vMatch-

Node

moxanport_5650-8-s-sc_firmwareRange≤3.11

AND

moxanport_5650-8-s-scMatch-

Node

moxanport_5650-16-m-sc_firmwareRange≤3.11

AND

moxanport_5650-16-m-scMatch-

Node

moxanport_5610-8-dt_firmwareRange≤2.9

AND

moxanport_5610-8-dtMatch-

Node

moxanport_5610-8-dt-j_firmwareRange≤2.9

AND

moxanport_5610-8-dt-jMatch-

Node

moxanport_5650-8-dt_firmwareRange≤2.9

AND

moxanport_5650-8-dtMatch-

Node

moxanport_5650-8-dt-j_firmwareRange≤2.9

AND

moxanport_5650-8-dt-jMatch-

Node

moxanport_5650i-8-dt_firmwareRange≤2.9

AND

moxanport_5650i-8-dtMatch-

Node

moxanport_5610-8-dt-t_firmwareRange≤2.9

AND

moxanport_5610-8-dt-tMatch-

Node

moxanport_5650i-8-dt-t_firmwareRange≤2.9

AND

moxanport_5650i-8-dt-tMatch-

Node

moxanport_5650-8-dt-tMatch-

AND

moxanport_5650-8-dt-t_firmwareRange≤2.9

Node

moxanport_ia-5150_firmwareRange≤1.7

AND

moxanport_ia-5150Match-

Node

moxanport_ia-5150i_firmwareRange≤1.7

AND

moxanport_ia-5150iMatch-

Node

moxanport_ia-5150-m-sc_firmwareRange≤1.7

AND

moxanport_ia-5150-m-scMatch-

Node

moxanport_ia-5150i-m-sc_firmwareRange≤1.7

AND

moxanport_ia-5150i-m-scMatch-

Node

moxanport_ia-5150-s-sc_firmwareRange≤1.7

AND

moxanport_ia-5150-s-scMatch-

Node

moxanport_ia-5150i-s-sc_firmwareRange≤1.7

AND

moxanport_ia-5150i-s-scMatch-

Node

moxanport_ia-5150-t_firmwareRange≤1.7

AND

moxanport_ia-5150-tMatch-

Node

moxanport_ia-5150i-t_firmwareRange≤1.7

AND

moxanport_ia-5150i-tMatch-

Node

moxanport_ia-5150-m-sc-t_firmwareRange≤1.7

AND

moxanport_ia-5150-m-sc-tMatch-

Node

moxanport_ia-5150i-m-sc-t_firmwareRange≤1.7

AND

moxanport_ia-5150i-m-sc-tMatch-

Node

moxanport_ia-5150-s-sc-t_firmwareRange≤1.7

AND

moxanport_ia-5150-s-sc-tMatch-

Node

moxanport_ia-5150i-s-sc-t_firmwareRange≤1.7

AND

moxanport_ia-5150i-s-sc-tMatch-

Node

moxanport_ia-5250_firmwareRange≤1.7

AND

moxanport_ia-5250Match-

Node

moxanport_ia-5250-t_firmwareRange≤1.7

AND

moxanport_ia-5250-tMatch-

Node

moxanport_ia-5150-m-st_firmwareRange≤1.7

AND

moxanport_ia-5150-m-stMatch-

Node

moxanport_ia-5150-m-st-t_firmwareRange≤1.7

AND

moxanport_ia-5150-m-st-tMatch-

Node

moxanport_ia-5250i_firmwareRange≤1.7

AND

moxanport_ia-5250iMatch-

Node

moxanport_ia-5250i-t_firmwareRange≤1.7

AND

moxanport_ia-5250i-tMatch-

Node

moxanport_ia-5150_firmwareRange≤2.1

AND

moxanport_ia-5150Match2.0

Node

moxanport_ia-5150i_firmwareRange≤2.1

AND

moxanport_ia-5150iMatch2.0

Node

moxanport_ia-5150-m-sc_firmwareRange≤2.1

AND

moxanport_ia-5150-m-scMatch2.0

Node

moxanport_ia-5150i-m-sc_firmwareRange≤2.1

AND

moxanport_ia-5150i-m-scMatch2.0

Node

moxanport_ia-5150-s-sc_firmwareRange≤2.1

AND

moxanport_ia-5150-s-scMatch2.0

Node

moxanport_ia-5150i-s-sc_firmwareRange≤2.1

AND

moxanport_ia-5150i-s-scMatch2.0

Node

moxanport_ia-5150-t_firmwareRange≤2.1

AND

moxanport_ia-5150-tMatch2.0

Node

moxanport_ia-5150i-t_firmwareRange≤2.1

AND

moxanport_ia-5150i-tMatch2.0

Node

moxanport_ia-5150-m-sc-t_firmwareRange≤2.1

AND

moxanport_ia-5150-m-sc-tMatch2.0

Node

moxanport_ia-5150i-m-sc-t_firmwareRange≤2.1

AND

moxanport_ia-5150i-m-sc-tMatch2.0

Node

moxanport_ia-5150-s-sc-t_firmwareRange≤2.1

AND

moxanport_ia-5150-s-sc-tMatch2.0

Node

moxanport_ia-5150i-s-sc-t_firmwareRange≤2.1

AND

moxanport_ia-5150i-s-sc-tMatch2.0

Node

moxanport_ia-5250_firmwareRange≤2.1

AND

moxanport_ia-5250Match2.0

Node

moxanport_ia-5250-t_firmwareRange≤2.1

AND

moxanport_ia-5250-tMatch2.0

Node

moxanport_ia-5150-m-st_firmwareRange≤2.1

AND

moxanport_ia-5150-m-stMatch2.0

Node

moxanport_ia-5150-m-st-t_firmwareRange≤2.1

AND

moxanport_ia-5150-m-st-tMatch2.0

Node

moxanport_ia-5250i_firmwareRange≤2.1

AND

moxanport_ia-5250iMatch2.0

Node

moxanport_ia-5250i-t_firmwareRange≤2.1

AND

moxanport_ia-5250i-tMatch2.0

Node

moxanport_ia5450a_firmwareRange≤2.0

AND

moxanport_ia5450aMatch-

Node

moxanport_ia5450ai_firmwareRange≤2.0

AND

moxanport_ia5450aiMatch-

Node

moxanport_ia5450ai-t_firmwareRange≤2.0

AND

moxanport_ia5450ai-tMatch-

Node

moxanport_ia5450a-t_firmwareRange≤2.0

AND

moxanport_ia5450a-tMatch-

Node

moxanport_ia5150a_firmwareRange≤1.5

AND

moxanport_ia5150aMatch-

Node

moxanport_ia5150ai_firmwareRange≤1.5

AND

moxanport_ia5150aiMatch-

Node

moxanport_ia5150ai-t_firmwareRange≤1.5

AND

moxanport_ia5150ai-tMatch-

Node

moxanport_ia5150a-t_firmwareRange≤1.5

AND

moxanport_ia5150a-tMatch-

Node

moxanport_ia5250a_firmwareRange≤1.5

AND

moxanport_ia5250aMatch-

Node

moxanport_ia5250ai_firmwareRange≤1.5

AND

moxanport_ia5250aiMatch-

Node

moxanport_ia5250ai-t_firmwareRange≤1.5

AND

moxanport_ia5250ai-tMatch-

Node

moxanport_ia5250a-t_firmwareRange≤1.5

AND

moxanport_ia5250a-tMatch-

Node

moxanport_ia5150a-iex_firmwareRange≤1.5

AND

moxanport_ia5150a-iexMatch-

Node

moxanport_ia5150ai-iex_firmwareRange≤1.5

AND

moxanport_ia5150ai-iexMatch-

Node

moxanport_ia5150ai-t-iex_firmwareRange≤1.5

AND

moxanport_ia5150ai-t-iexMatch-

Node

moxanport_ia5150a-t-iex_firmwareRange≤1.5

AND

moxanport_ia5150a-t-iexMatch-

Node

moxanport_ia5250a-iex_firmwareRange≤1.5

AND

moxanport_ia5250a-iexMatch-

Node

moxanport_ia5250ai-iex_firmwareRange≤1.5

AND

moxanport_ia5250ai-iexMatch-

Node

moxanport_ia5250ai-t-iex_firmwareRange≤1.5

AND

moxanport_ia5250ai-t-iexMatch-

Node

moxanport_ia5250a-t-iex_firmwareRange≤1.5

AND

moxanport_ia5250a-t-iexMatch-

Node

moxanport_ia5000a-i\/o_firmwareRange≤2.0

AND

moxanport_ia5000a-i\/oMatch-

Node

moxanport_iaw5000a-i\/o_firmwareRange≤2.2

AND

moxanport_iaw5000a-i\/oMatch-

Node

moxanport_p5150a_firmwareRange≤1.6

AND

moxanport_p5150aMatch-

Node

moxanport_p5150a-t_firmwareRange≤1.6

AND

moxanport_p5150a-tMatch-

References

www.moxa.com/en/support/product-support/security-advisory/mpsa-233328-nport-5000-series-firmware-improper-validation-of-integrity-check-vulnerability

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

19.3%

JSON

Related for NVD:CVE-2023-4929

cve1 prion1 cvelist1 nessus1