Vulnerabilities > CVE-2021-32976 - Out-of-bounds Write vulnerability in Moxa products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Five buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to initiate a denial-of-service attack and execute arbitrary code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 8 | |
Hardware | 4 |
Common Weakness Enumeration (CWE)
References
- https://www.cisa.gov/uscert/ics/advisories/icsa-21-187-01
- https://www.cisa.gov/uscert/ics/advisories/icsa-21-187-01
- https://www.moxa.com/en/support/product-support/security-advisory/nport-iaw5000a-io-serial-device-server-vulnerabilities
- https://www.moxa.com/en/support/product-support/security-advisory/nport-iaw5000a-io-serial-device-server-vulnerabilities