Lucene search
K

9 matches found

OSV
OSV
added 2023/08/16 4:15 p.m.4 views

CVE-2023-4204

NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk to the security and integrity of the affected device. This vulnerability is attributed to the presence of a hardcoded key, which could potentially facilitate...

9.8CVSS5.8AI score0.00337EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/08/02 12:0 a.m.20 views

Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation (CVE-2021-32970)

Data can be copied without validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier, which may allow a remote attacker to cause denial-of-service conditions. This plugin only works with Tenable.ot. Please visit...

7.8CVSS7.4AI score0.01623EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/04/01 10:17 p.m.21 views

CVE-2021-32976 Moxa NPort IAW5000A-I/O Series Serial Device Server Stack-based Buffer Overflow

Five buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to initiate a denial-of-service attack and execute arbitrary code...

9.8CVSS9.9AI score0.02618EPSS
Exploits0References2
CVE
CVE
added 2022/04/01 10:17 p.m.80 views

CVE-2021-32968

CVE-2021-32968 affects Moxa NPort IAW5000A-I/O Series Serial Device Server firmware version 2.2 and earlier, where two buffer overflows in the built-in web server may allow a remote attacker to cause a denial-of-service. The vulnerability is documented across multiple sources (NVD, Red Hat, ICS-C...

7.5CVSS7.7AI score0.01637EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/01 10:17 p.m.17 views

CVE-2021-32968 Moxa NPort IAW5000A-I/O Series Serial Device Server Classic Buffer Overflow

Two buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O Series firmware version 2.2 or earlier may allow a remote attacker to cause a denial-of-service condition...

7.5CVSS7.7AI score0.01637EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.17 views

Rockwell Automation 1794-AENT Flex I/O Series B Buffer Copy Without Checking Size of Input (CVE-2020-6087)

An exploitable denial of service vulnerability exists in the ENIP Request Path Data Segment functionality of Allen- Bradley Flex IO 1794-AENT/B. A specially crafted network request can cause a loss of communications with the device resulting in denial-of-service. An attacker can send a malicious...

7.8CVSS7.1AI score0.03558EPSS
Exploits1References4
ICS
ICS
added 2021/07/06 12:0 a.m.140 views

Moxa NPort IAW5000A-I/O Series Serial Device Server

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Moxa Equipment: NPort IAW5000A-I/O Series Wireless Device Server Vulnerabilities: Classic Buffer Overflow, Stack-based Buffer Overflow, Improper Input Validation, OS Command Injection 2. RISK EVALUATION...

10CVSS9.6AI score0.02618EPSS
Exploits0References5
ICS
ICS
added 2020/10/13 12:0 a.m.62 views

MOXA NPort IAW5000A-I/O Series

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: MOXA Equipment: NPort IAW5000A-I/O Series Vulnerabilities: Session Fixation, Improper Privilege Management, Weak Password Requirements, Cleartext Transmission of Sensitive Information, Improper...

9.8CVSS8.6AI score0.01405EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2020/08/26 12:0 a.m.3 views

The software vulnerabilities of the NPort IAW5000A-I/O Series web servers, related to weak password requirements, allow attackers to compromise user credentials.

The vulnerability of the NPort IAW5000A-I/O Series web server software is related to weak password requirements. Exploiting this vulnerability could allow a malicious actor to compromise user credentials remotely...

10CVSS5.5AI score
Exploits0References1Affected Software1
Rows per page
Query Builder