CVE-2023-4204

Name of the Vulnerable Software and Affected Versions NPort IAW5000A-I/O Series versions v2.2 and prior

Description The issue is related to a hardcoded key in the NPort IAW5000A-I/O Series firmware, which could facilitate firmware manipulation. This poses a potential risk to the security and integrity of the affected device, allowing a remote attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations For NPort IAW5000A-I/O Series versions v2.2 and prior, consider updating to a newer version that addresses the hardcoded credential vulnerability. As a temporary workaround, restrict access to the device to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.