Moxa Nport Iaw5000a-i/o Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Moxa Nport Iaw5000a-i/o Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2020-25153 — CVSS 9.8 (critical): The built-in web service for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower does not require users to have strong passwords.
CVE-2020-25196 — CVSS 9.8 (critical): The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows SSH/Telnet sessions, which may be vulnerable to…
CVE-2020-25194 — CVSS 8.8 (high): The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has improper privilege management, which may allow an…
CVE-2020-25198 — CVSS 8.8 (high): The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has incorrectly implemented protections from session…
CVE-2020-25190 — CVSS 7.5 (high): The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower stores and transmits the credentials of third-party…
CVE-2023-4929 — CVSS 6.5 (medium): All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability…
CVE-2023-4204 — CVSS 5.4 (medium): NPort IAW5000A-I/O Series firmware version v2.2 and prior is affected by a hardcoded credential vulnerabilitywhich poses a potential risk…
CVE-2020-25192 — CVSS 5.3 (medium): The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows sensitive information to be displayed without…