PT-2017-14529 · Moxa · Nport 5150+2

Published

2017-11-16

Updated

2019-10-09

CVE-2017-16715

CVSS v3.1

8.6

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L

Name of the Vulnerable Software and Affected Versions Moxa NPort 5110 versions 2.2 through 2.7 Moxa NPort 5130 versions prior to 3.7 Moxa NPort 5150 versions prior to 3.7

Description An Information Exposure issue was discovered, allowing an attacker to exploit a flaw in the handling of Ethernet frame padding, which may enable information exposure.

Recommendations For Moxa NPort 5110 versions 2.2 through 2.7, update to a version later than 2.7 to resolve the issue. For Moxa NPort 5130 versions prior to 3.7, update to version 3.7 or later. For Moxa NPort 5150 versions prior to 3.7, update to version 3.7 or later.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-16715

Affected Products

Nport 5110

Nport 5130

Nport 5150

PT-2017-14529 · Moxa · Nport 5150+2

CVE-2017-16715

Weakness Enumeration

Related Identifiers

Affected Products

References · 4