PT-2020-16008 · Moxa · Moxa Nport Iaw5000A-I/O

Published

2020-12-23

Updated

2021-09-23

CVE-2020-25192

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions MOXA NPort IAW5000A-I/O versions 2.1 and earlier

Description The issue allows sensitive information to be displayed without proper authorization due to the built-in WEB server in MOXA NPort IAW5000A-I/O.

Recommendations For MOXA NPort IAW5000A-I/O versions 2.1 and earlier, update to a version higher than 2.1 to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2020-25192

Affected Products

Moxa Nport Iaw5000A-I/O

PT-2020-16008 · Moxa · Moxa Nport Iaw5000A-I/O

CVE-2020-25192

Weakness Enumeration

Related Identifiers

Affected Products

References · 4