PT-2017-14534 · Moxa · Moxa Nport W2250A+1

Published

2017-12-22

Updated

2019-10-09

CVE-2017-16727

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Moxa NPort W2150A versions prior to 1.11 Moxa NPort W2250A versions prior to 1.11

Description A Credentials Management issue allows unauthorized access to the device due to an empty default password. This enables an unauthorized user to compromise the confidentiality and integrity of wireless traffic without needing a password.

Recommendations For Moxa NPort W2150A versions prior to 1.11, update to version 1.11 or later to resolve the issue. For Moxa NPort W2250A versions prior to 1.11, update to version 1.11 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-521CWE-255

Related Identifiers

CVE-2017-16727

Affected Products

Moxa Nport W2150A

Moxa Nport W2250A

PT-2017-14534 · Moxa · Moxa Nport W2250A+1

CVE-2017-16727

Weakness Enumeration

Related Identifiers

Affected Products

References · 4