Moxa VPort Cameras Out-of-bounds Read (CVE-2021-25848)

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to using fixed loop counter variable without checking the actual available length via a crafted lldp packet. This plugin...

The vulnerability of Moxa VPORT 06EC-2V IP camera software and Moxa VPort 461A video encoder software, related to a countable loss of significance, allows attackers to trigger a service failure.

The vulnerability of Moxa VPORT 06EC-2V IP camera microprogramming software and the Moxa VPort 461A video encoder microprogramming software is related to a countable degree of significance loss. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service failures by...

The vulnerability of Moxa VPORT 06EC-2V IP camera software and Moxa VPort 461A video encoder software, related to memory release errors, allows a intruder to trigger a service failure.

The vulnerability of Moxa VPORT 06EC-2V IP camera microprogramming software and Moxa VPort 461A video encoder microprogramming software is related to memory release errors. Exploiting this vulnerability can allow an attacker to cause service failure by sending specially crafted packets...

CVE-2021-25847

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop counter variable via a crafted lldp packet...

CVE-2021-25849

An integer underflow was discovered in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, improper validation of the PortID TLV leads to Denial of Service via a crafted lldp packet...

CVE-2021-25848

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to using fixed loop counter variable without checking the actual available length via a crafted lldp packet...

Input validation

Improper validation of the ChassisID TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet...

Input validation

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop counter variable via a crafted lldp packet...

CVE-2021-25849

The CVE-2021-25849 entry describes a denial-of-service vulnerability in MOXA Camera VPort 06EC-2V Series (version 1.1) caused by an integer underflow in the userdisk/vport_lldpd component due to improper validation of the PortID TLV. The affected device is vulnerable to a crafted LLDP packet that...

CVE-2021-25846

Improper validation of the ChassisID TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the memcpy function via a crafted lldp packet...

CVE-2021-25845

CVE-2021-25845 affects the Moxa Camera VPort 06EC-2V Series (firmware 1.1) and is rooted in the improper validation of the ChassisID TLV in the LLDP handling path (userdisk/vport_lldpd). A crafted LLDP packet can trigger a NULL pointer dereference , leading to a denial of service. Reports consist...

CVE-2021-25847

Improper validation of the length field of LLDP-MED TLV in userdisk/vportlldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop counter variable via a crafted lldp packet...

CVE-2021-25848

CVE-2021-25848 affects the Moxa Camera VPort 06EC-2V Series (version 1.1). The root cause is improper validation of the length field in the LLDP-MED TLV processed by userdisk/vport_lldpd, caused by using a fixed loop counter without validating the actual available length, allowing information dis...

Moxa Camera VPort 06EC-2V 代码问题漏洞

Moxa Camera VPort 06EC-2V is a camera device from Moxa MOXA of Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service by dereferencing a NULL pointer via a fake lldp packet...

Moxa Camera VPort 06EC-2V 数字错误漏洞

MOXA Moxa Camera VPort 06EC-2V is a camera device from Moxa Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service by passing a carefully crafted lldp packet to a negative number in the memcpy function...

Moxa Camera VPort 06EC-2V 缓冲区错误漏洞

Moxa Camera VPort 06EC-2V is a camera device from Moxa MOXA of Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can obtain compromised information by controlling a loop counter variable via a crafted lldp packet...

Moxa Camera VPort 06EC-2V 缓冲区错误漏洞

Moxa Camera VPort 06EC-2V is a camera device from Moxa MOXA of Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can obtain compromised information by controlling a loop counter variable via a crafted lldp packet...

Moxa Camera VPort 06EC-2V 数字错误漏洞

MOXA Camera VPort 06EC-2V is a camera device from MOXA Taiwan, China. A security vulnerability exists in the Moxa Camera VPort 06EC-2V. An attacker can cause a denial of service via a crafted lldp packet...

The vulnerability of Moxa VPORT 06EC-2V series IP cameras’ microprogramming software is related to integer overflow. This allows a intruder to trigger a service failure.

The vulnerability of Moxa VPORT 06EC-2V series IP cameras’ microprogramming software is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to trigger a service failure through a specially crafted HTTP request...

The vulnerability of Moxa VPORT 06EC-2V series IP cameras’ microprogramming software is related to errors in pointer assignment. This vulnerability allows attackers to circumvent existing security restrictions through brute-force attacks.

The vulnerability of Moxa VPORT 06EC-2V series IP cameras’ microprogramming software is related to pointer assignment errors. Exploiting this vulnerability can allow a malicious actor to bypass existing security restrictions through brute-force attacks...