PT-2017-14529 · Moxa · Nport 5150+2

Publicado

2017-11-16

Atualizado

2019-10-09

CVE-2017-16715

CVSS v3.1

8.6

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Name of the Vulnerable Software and Affected Versions Moxa NPort 5110 versions 2.2 through 2.7 Moxa NPort 5130 versions prior to 3.7 Moxa NPort 5150 versions prior to 3.7

Description An Information Exposure issue was discovered, allowing an attacker to exploit a flaw in the handling of Ethernet frame padding, which may enable information exposure.

Recommendations For Moxa NPort 5110 versions 2.2 through 2.7, update to a version later than 2.7 to resolve the issue. For Moxa NPort 5130 versions prior to 3.7, update to version 3.7 or later. For Moxa NPort 5150 versions prior to 3.7, update to version 3.7 or later.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2017-16715

Produtos afetados

Nport 5110

Nport 5130

Nport 5150

PT-2017-14529 · Moxa · Nport 5150+2

CVE-2017-16715

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4