Moxa Latest Vulnerabilities

December 4

Moxa IP Cameras Vulnerable to Denial-of-Service Attacks

CVE-2024-9404
Moxa

October 18

Software Vulnerability Affects Sensitive Data

CVE-2024-4740
MoxaMxsecurity Series7.5HIGH

Unauthorized Access to Resource Due to Inadequate Restriction

CVE-2024-4739
MoxaMxsecurity Series7.5HIGH

October 14

Bug Bounty Platform Vulnerability Allows Arbitrary Code Execution

CVE-2024-9139
MoxaEdr-8010 Series7.2HIGH

Unauthorized Access to Configuration Files and System Compromise via Lack of Authentication Check

CVE-2024-9137
MoxaEdr-8010 Series9.4CRITICAL

September 21

Race Condition Vulnerability Could Lead to File Tampering and Code Execution

CVE-2024-6787
MoxaMxview One Series5.9MEDIUM

Vulnerability in MQTT Allowes Arbitrary File Reading

CVE-2024-6786
MoxaMxview One Series6.5MEDIUM

Sensitive Information Exposure Risk Due to Cleartext Credentials Storage

CVE-2024-6785
MoxaMxview One Series7.1HIGH

June 25

OnCell G3470A-LTE Series Firmware Vulnerability

CVE-2024-4641
MoxaOncell G3150a-lte Series9.8CRITICAL

Buffer Overflow Vulnerability Affects OnCell G3470A-LTE Series Firmware

CVE-2024-4640
MoxaOncell G3150a-lte Series8.2HIGH

Unauthorized Command Execution Vulnerability in OnCell G3470A-LTE Series Firmware

CVE-2024-4639
MoxaOncell G3150a-lte Series8.8HIGH

OnCell G3470A-LTE Series Firmware Vulnerability

CVE-2024-4638
MoxaOncell G3470a-lte Series8.8HIGH

May 6

NPort 5100A Series Affected by Web Server XSS Vulnerability

CVE-2024-3576
MoxaNport 5100a Series8.3HIGH

March 6

Buffer Overflow Vulnerability in Moxa NPort W2150A/W2250A Series Firmware

CVE-2024-1220
MoxaNport W2150a/w2250a Se...8.2HIGH

February 26

Vulnerability in IP Forwarding Capabilities Could Allow Attacker to Bypass Access Controls or Hide Source of Malicious Requests

CVE-2024-0387
MoxaEds-4008 Series6.5MEDIUM

December 31

OnCell G3150A-LTE Series: Clickjacking Vulnerability

CVE-2023-6093
MoxaOnCell G3150A-LTE Series5.3MEDIUM

OnCell G3150A-LTE Series: Web Server Transmits Cleartext Credentials

CVE-2023-6094
MoxaOncell G3150a-lte Series5.3MEDIUM

December 23

ioLogik E1200 Series: Weak Cryptographic Algorithm Vulnerability

CVE-2023-5962
MoxaIologik E1200 Series6.5MEDIUM

ioLogik E1200 Series Firmware Vulnerable to CSRF Attacks

CVE-2023-5961
MoxaIologik E1200 Series👾8.8HIGH

November 2

Session cookies attribute not set properly

CVE-2023-4217
MoxaPt-g503 Series3.1LOW

Cookie Without Secure Flag

CVE-2023-5035
MoxaPt-g503 Series3.1LOW

November 1

Incorrect Implementation of Authentication Algorithm Vulnerability

CVE-2023-5627
MoxaNPort 6000 Series7.5HIGH

Web Server Buffer Overflow Vulnerability

CVE-2023-4452
MoxaEdr-810 Series6.5MEDIUM

October 3

NPort 5000 Series Firmware Improper Validation of Integrity Check Vulnerability

CVE-2023-4929
MoxaNport 5000ai-m12 Series6.5MEDIUM

September 2

MXsecurity Device Information Disclosure

CVE-2023-39981
MoxaMxsecurity Series7.5HIGH

MXsecurity Hardcoded Credential

CVE-2023-39982
MoxaMxsecurity Series5.9MEDIUM

MXsecurity Authentication Bypass

CVE-2023-39979
MoxaMxsecurity Series9.8CRITICAL

MXsecurity Authenticated Information Disclosure Due to SQL Injection

CVE-2023-39980
MoxaMxsecurity Series7.1HIGH

MXsecurity Register Database Pollution

CVE-2023-39983
MoxaMxsecurity Series5.3MEDIUM

August 24

ioLogik 4000 Series: Server Banner Information Disclosure

CVE-2023-4230
MoxaIologik 4000 Series5.3MEDIUM

ioLogik 4000 Series: Session Headers Not Implemented

CVE-2023-4229
MoxaIologik 4000 Series4.3MEDIUM

ioLogik 4000 Series: Session Cookies Attribute Not Set Properly

CVE-2023-4228
MoxaIologik 4000 Series3.1LOW

ioLogik 4000 Series: Existence of an Unauthorized Service

CVE-2023-4227
MoxaIologik 4000 Series6.5MEDIUM

August 17

Second Order Command-injection Vulnerability in the Certificate-delete Function

CVE-2023-34217
MoxaTn-5900 Series8.1HIGH

Second Order Command-injection Vulnerability in the Key-delete Function

CVE-2023-34216
MoxaTn-5900 Series8.1HIGH

Second Order Command-injection Vulnerability in the Certificate-generation Function

CVE-2023-34215
MoxaTn-5900 Series9.8CRITICAL

Second Order Command-injection Vulnerability in the Key-generation Function

CVE-2023-33239
MoxaTn-5900 Series9.8CRITICAL

Second Order Command-injection Vulnerability in the Key-generation Function

CVE-2023-34213
MoxaTn-5900 Series9.8CRITICAL

Command-injection Vulnerability in Certificate Management

CVE-2023-33238
MoxaTn-5900 Series9.8CRITICAL

Second Order Command-injection Vulnerability in the Certificate-generation Function

CVE-2023-34214
MoxaTn-5900 Series9.8CRITICAL

Authentication Bypass Without Administrator Privilege

CVE-2023-33237
MoxaTn-5900 Series8.8HIGH

August 16

NPort IAW5000A-I/O Series Hardcoded Credential Vulnerability

CVE-2023-4204
MoxaNport Iaw5000a-i/o Series5.4MEDIUM

July 5

TN-5900 Series User Enumeration Vulnerability

CVE-2023-3336
MoxaTn-5900 Series5.3MEDIUM

May 22

MXsecurity Hardcoded Credential Vulnerability

CVE-2023-33236
MoxaMXsecurity Series9.8CRITICAL

MXsecurity Command Injection Vulnerability

CVE-2023-33235
MoxaMXsecurity Series8.8HIGH

April 27

Moxa MiiNePort E1 - Broken Access Control

CVE-2023-28697
MoxaMiiNePort E19.8CRITICAL

March 7

CVE-2023-1257

CVE-2023-1257
MOXAUC-8580 Series6.8MEDIUM

February 7

CVE-2022-40693
MoxaSds-3008 Series Indust...5.9MEDIUM

CVE-2022-40224
MoxaSds-3008 Series Indust...5.3MEDIUM

CVE-2022-41313
MoxaSds-3008 Series Indust...4.3MEDIUM

CVE-2022-41312
MoxaSds-3008 Series Indust...4.3MEDIUM

CVE-2022-41311
MoxaSds-3008 Series Indust...4.3MEDIUM

CVE-2022-40691
MoxaSds-3008 Series Indust...5.3MEDIUM

November 28

CVE-2022-3088
MoxaUc-8100a-me-t System I...7.8HIGH

August 31

MOXA NPort 5110 Out-of-bounds Write

CVE-2022-2044
MoxaMoxa8.2HIGH

MOXA NPort 5110 Out-of-bounds Write

CVE-2022-2043
MoxaMoxa7.5HIGH

April 15

CVE-2022-27048
MoxaMgate Mb3170i Firmware7.4HIGH

April 14

CVE-2021-40392
MoxaMxview Series5.3MEDIUM

CVE-2021-40390
MoxaMxview Series10CRITICAL

April 1

Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation

CVE-2021-32974
MoxaNport Iaw5000a-i/o Ser...9.8CRITICAL

Moxa NPort IAW5000A-I/O Series Serial Device Server Improper Input Validation

CVE-2021-32970
MoxaNport Iaw5000a-i/o Ser...7.5HIGH

Moxa NPort IAW5000A-I/O Series Serial Device Server Stack-based Buffer Overflow

CVE-2021-32976
MoxaNport Iaw5000a-i/o Ser...9.8CRITICAL

Moxa NPort IAW5000A-I/O Series Serial Device Server Classic Buffer Overflow

CVE-2021-32968
MoxaNport Iaw5000a-i/o Ser...7.5HIGH

February 18

CVE-2021-46082
MoxaTn-5916-wv-t Firmware7.5HIGH

January 26

CVE-2021-46559
MoxaTn-5900 Firmware7.5HIGH

CVE-2021-46560
MoxaTn-5900 Firmware9.8CRITICAL

December 27

ICSA-21-357-01 Moxa MGate Protocol Gateways

CVE-2021-4161
MoxaMgate Mb3180 Series9.8CRITICAL

October 12

Moxa MXview Network Management Software

CVE-2021-38452
MoxaMxview Network Managem...7.5HIGH

Moxa MXview Network Management Software

CVE-2021-38454
MoxaMxview Network Managem...10CRITICAL

Moxa MXview Network Management Software

CVE-2021-38456
MoxaMxview Network Managem...9.8CRITICAL

Moxa MXview Network Management Software

CVE-2021-38460
MoxaMxview Network Managem...7.5HIGH

Moxa MXview Network Management Software

CVE-2021-38458
MoxaMxview Network Managem...9.8CRITICAL

September 7

CVE-2021-39279
MoxaWac-2004 Firmware8.8HIGH

CVE-2021-39278
MoxaWac-2004 Firmware6.1MEDIUM

June 18

CVE-2021-33824
MoxaMgate Mb3180 Firmware7.5HIGH

CVE-2021-33823
MoxaMgate Mb3180 Firmware7.5HIGH

May 14

CVE-2020-27185
MoxaNport Ia5000a Series W...7.5HIGH

CVE-2020-27184
MoxaNport Ia5000a Series W...5.9MEDIUM

CVE-2020-27150
MoxaNport Ia5000a Series7.5HIGH

CVE-2020-27149
MoxaNport Ia5000a Series W...6.5MEDIUM

May 10

CVE-2021-25849
MoxaVport 06ec-2v26m Firmware7.5HIGH

CVE-2021-25846
MoxaVport 06ec-2v26m Firmware7.5HIGH

CVE-2021-25845
MoxaVport 06ec-2v26m Firmware7.5HIGH

CVE-2021-25847
MoxaVport 06ec-2v26m Firmware9.1CRITICAL

CVE-2021-25848
MoxaVport 06ec-2v26m Firmware9.1CRITICAL

February 3

CVE-2020-28144
MoxaEdr-g903 Firmware9.8CRITICAL

December 23

MOXA NPort IAW5000A-I/O Series

CVE-2020-25194
MoxaNport Iaw5000a-i/o8.8HIGH

MOXA NPort IAW5000A-I/O Series

CVE-2020-25192
MoxaNport Iaw5000a-i/o5.3MEDIUM

MOXA NPort IAW5000A-I/O Series

CVE-2020-25190
MoxaNport Iaw5000a-i/o7.5HIGH

MOXA NPort IAW5000A-I/O Series

CVE-2020-25153
MoxaNport Iaw5000a-i/o9.8CRITICAL

MOXA NPort IAW5000A-I/O Series

CVE-2020-25198
MoxaNport Iaw5000a-i/o8.8HIGH

MOXA NPort IAW5000A-I/O Series

CVE-2020-25196
MoxaNport Iaw5000a-i/o9.8CRITICAL

November 5

CVE-2020-13537
MoxaMoxa9.3CRITICAL

CVE-2020-13536
MoxaMoxa9.3CRITICAL

November 2

CVE-2020-23639
MoxaVport 461 Firmware9.8CRITICAL

July 15

CVE-2020-14511
MoxaEdr-g902 And Edr-g903 ...9.8CRITICAL

May 1

CVE-2020-12117
MoxaNport 5100a Firmware5.3MEDIUM

March 26

CVE-2020-6999
MoxaMoxa Eds-g516e Series ...6.5MEDIUM

March 24

CVE-2020-6997
MoxaMoxa Eds-g516e Series ...7.5HIGH

CVE-2020-6991
MoxaMoxa Eds-g516e Series ...9.8CRITICAL