Vulnerabilities > Moxa > Nport Iaw5250A 6I O Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-01 CVE-2021-32970 Improper Input Validation vulnerability in Moxa products
Data can be copied without validation in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier, which may allow a remote attacker to cause denial-of-service conditions.
network
low complexity
moxa CWE-20
7.8
2022-04-01 CVE-2021-32976 Out-of-bounds Write vulnerability in Moxa products
Five buffer overflows in the built-in web server in Moxa NPort IAW5000A-I/O series firmware version 2.2 or earlier may allow a remote attacker to initiate a denial-of-service attack and execute arbitrary code.
network
low complexity
moxa CWE-787
7.5