RSS   Vulnerabilities for 'Nport 5400 series firmware'   RSS

2017-02-13
 
CVE-2016-9371

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. User-controlled input is not neutralized before being output to web page (CROSS-SITE SCRIPTING).

 
 
CVE-2016-9369

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. Firmware can be updated over the network without authentication, which may allow remote code execution.

 
 
CVE-2016-9367

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. The amount of resources requested by a malicious actor is not restricted, leading to a denial-of-service caused by resource exhaustion.

 
 
CVE-2016-9366

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. An attacker can freely use brute force to determine parameters needed to bypass authentication.

 
 
CVE-2016-9365

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. Requests are not verified to be intentionally submitted by the proper user (CROSS-SITE REQUEST FORGERY).

 
 
CVE-2016-9363

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. Buffer overflow vulnerability may allow an unauthenticated attacker to remotely execute arbitrary code.

 
 
CVE-2016-9361

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. Administration passwords can be retried without authenticating.

 
 
CVE-2016-9348

 

 
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. A configuration file contains parameters that represent passwords in plaintext.

 

 >>> Vendor: MOXA 88 Products
Device manager
Mdm tool
Activex sdk
Edr g903 firmware
Edr-g903
Oncell gateway g3211
Oncell gateway firmware
Vport activex sdk plus
Softcms
Eds-405a firmware
Eds-408a firmware
Oncell central manager
Ioadmin firmware
Iologik firmware
Miineport e1 4641 firmware
Miineport e1 7080 firmware
Miineport e2 1242 firmware
Miineport e2 4561 firmware
Miineport e3 firmware
Uc-7408 lx-plus
Uc-7408 lx-plus firmware
Pt-7728 firmware
Pt-7728
Device server web console 5232-n firmware
Mgate mb3170 router firmware
Mgate mb3180 router firmware
Mgate mb3270 router firmware
Mgate mb3280 router firmware
Mgate mb3480 router firmware
Oncell g3001 firmware
Oncell g3100v2 firmware
Active opc server
Dacenter
Nport 5100 series firmware
Nport 5400 series firmware
Nport 5600 series firmware
Nport 5100a series firmware
Nport p5150a series firmware
Nport 5200 series firmware
Nport 6100 series firmware
Nport 5200a series firmware
Nport 5x50a1-m12 series firmware
Nport 5600-8-dtl series firmware
Edr-810 firmware
Miineport e1 firmware
Miineport e2 firmware
Awk-5232-m12-rcc firmware
Awk-3191 firmware
Awk-3131a firmware
Awk-6232 firmware
Awk-1127 firmware
Wac-2004 firmware
Awk-5232 firmware
Awk-1121 firmware
Wac-1001 v2 firmware
Awk-3121-m12-rtg firmware
Awk-1131a firmware
Awk-4131a firmware
Awk-3131-m12-rcc firmware
Oncellg3470a-lte firmware
Mxview
Mx-aopc server
Oncell 5104-hsdpa firmware
Oncell 5004-hspa firmware
Oncell g3110-hspa firmware
Oncell g3110-hsdpa firmware
Oncell g3150-hsdpa firmware
Oncell 5104-hspa firmware
Eds-g512e firmware
Nport 5110 firmware
Nport 5130 firmware
Nport 5150 firmware
Softcms lab view
Softnvr-ia live view
Oncell g3110-hspa-t firmware
Oncell g3150-hspa-t firmware
Oncell g3150-hspa firmware
Nport 5210 firmware
Nport 5230 firmware
Nport 5232 firmware
Thingspro
Eds-510a firmware
Iks-g6824a firmware
Awk-3121 firmware
Oncell g3470a-lte-eu-t firmware
Oncell g3470a-lte-eu firmware
Oncell g3470a-lte-us-t firmware
Oncell g3470a-lte-us firmware


Copyright 2019, cxsecurity.com

 

Back to Top