Remote Code Execution Vulnerability in Moxa NPort 6100-G2/6200-G2 Series
CVE-2025-2026

7.1HIGH

Key Information:

Vendor

Moxa
Status
Nport 6100-g2/6200-g2 Series
Vendor
CVE Published:
31 December 2025

What is CVE-2025-2026?

The Moxa NPort 6100-G2 and 6200-G2 Series are susceptible to a vulnerability that permits authenticated remote attackers to execute a null byte injection via the device’s web API. This can lead to an unexpected reboot of the device, causing significant interruptions to service and potentially resulting in a denial-of-service condition. Attackers with read-only web privileges may exploit this vulnerability, thereby compromising normal operations.

Affected Version(s)

NPort 6100-G2/6200-G2 Series 1.0.0

NPort 6100-G2/6200-G2 Series 1.1.0

References

https://www.moxa.com/en/support/product-support/security-...
vendor-advisory

CVSS V4

Score:
7.1
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Cory YH Tseng
JSON
.
CVE-2025-2026 : Remote Code Execution Vulnerability in Moxa NPort 6100-G2/6200-G2 Series