Vulnerabilities > Moxa > Nport Ia5250A Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-10-03 CVE-2023-4929 Improper Validation of Integrity Check Value vulnerability in Moxa products
All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability.
network
low complexity
moxa CWE-354
8.8
2021-05-14 CVE-2020-27184 Cleartext Transmission of Sensitive Information vulnerability in Moxa products
The NPort IA5000A Series devices use Telnet as one of the network device management services.
network
high complexity
moxa CWE-319
5.9
2021-05-14 CVE-2020-27185 Cleartext Transmission of Sensitive Information vulnerability in Moxa products
Cleartext transmission of sensitive information via Moxa Service in NPort IA5000A series serial devices.
network
low complexity
moxa CWE-319
7.5
2021-05-14 CVE-2020-27149 Unspecified vulnerability in Moxa products
By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration changed.
network
low complexity
moxa
6.5
2021-05-14 CVE-2020-27150 Unspecified vulnerability in Moxa products
In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-shared key” doesn’t set.
network
low complexity
moxa
7.5