Active Debug Code Vulnerability in Serial Device Servers by Moxa
CVE-2025-15017

7HIGH

Key Information:

Vendor

Moxa
Status
Nport 5000ai-m12 Series
Nport 5100 Series
Nport 5100a Series
Nport 5200 Series
Vendor
CVE Published:
31 December 2025

What is CVE-2025-15017?

A security flaw exists in Moxa's serial device servers where active debug functionality is unintentionally left enabled in the UART interface. This oversight allows attackers with physical access to connect to the UART interface and gain unauthorized access without the need for authentication or user interaction. The ease of exploitation makes it a significant security concern, enabling attackers to perform privileged operations and access sensitive system resources, thereby threatening the confidentiality, integrity, and availability of the device in question. It's noteworthy that this flaw does not seem to affect external systems or dependencies.

Affected Version(s)

NPort 5000AI-M12 Series 1.0

NPort 5100 Series 1.0

NPort 5100A Series 1.0

References

https://www.moxa.com/en/support/product-support/security-...
vendor-advisory

CVSS V4

Score:
7
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-15017 : Active Debug Code Vulnerability in Serial Device Servers by Moxa