8 matches found
CVE-2025-15017
A vulnerability exists in serial device servers where active debug code remains enabled in the UART interface. An attacker with physical access to the device can directly connect to the UART interface and, without authentication, user interaction, or execution conditions, gain unauthorized access...
Moxa NPort IAW5000A-I/O Series Serial Device Server Stack-Based Buffer Overflow (CVE-2021-32976)
Five buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to initiate a denial-of-service attack and execute arbitrary code. This plugin only works with Tenable.ot. Please visit...
Moxa NPort IAW5000A-I/O Series Serial Device Server Buffer Copy Without Checking Size of Input (CVE-2021-32968)
Two buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O Series firmware version 2.2 or earlier may allow a remote attacker to cause a denial-of-service condition. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation (CVE-2021-32970)
Data can be copied without validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier, which may allow a remote attacker to cause denial-of-service conditions. This plugin only works with Tenable.ot. Please visit...
CVE-2021-32976 Moxa NPort IAW5000A-I/O Series Serial Device Server Stack-based Buffer Overflow
Five buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to initiate a denial-of-service attack and execute arbitrary code...
CVE-2021-32970 Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation
Data can be copied without validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier, which may allow a remote attacker to cause denial-of-service conditions...
MOXA NPort IA5150A 访问控制错误漏洞
MOXA Moxa NPort IA5150A Series is an industrial control device server from China Moxa MOXA. for 1-port RS-232 / 422/485 industrial automation device server with serial/LAN/power surge protection, two 10/100BaseTX ports with single IP, and operating temperature from 0 to 60°C. The NPort IA5150A...
Command Execution Vulnerability in EKI-1521 at Advantech (China) Co.
The EKI-1521 is a serial device networking server that supports RS-232/422/485. A command execution vulnerability exists in the Advantech China EKI-1521, which can be exploited by an attacker to remotely execute system commands...