CVE-2025-1977

Name of the Vulnerable Software and Affected Versions NPort 6100-G2/6200-G2 Series (affected versions not specified)

Description An authenticated user with read-only access can perform unauthorized configuration changes through the MCC (Moxa CLI Configuration) tool. This occurs due to execution with unnecessary privileges. The issue can be exploited remotely over the network with low attack complexity and requires specific system conditions or configurations. Successful exploitation may lead to changes in device settings, potentially impacting the confidentiality, integrity, and availability of the device. No impact on other systems has been identified. The MCC tool is used for configuration.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.