Description
A Resource Exhaustion issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to exhaust memory resources by sending a large amount of TCP SYN packets.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101885
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-17-320-01
Scores
CVSS v3
7.5
EPSS
0.0042
EPSS Percentile
62.3%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-400
Status
published
Products (7)
moxa/nport_5110_firmware
2.2
moxa/nport_5110_firmware
2.4
moxa/nport_5110_firmware
2.6
moxa/nport_5110_firmware
2.7
moxa/nport_5130_firmware
< 3.7
moxa/nport_5150_firmware
< 3.7
n/a/Moxa NPort 5110, 5130, and 5150
Moxa NPort 5110, 5130, and 5150
Published
Nov 16, 2017
Tracked Since
Feb 18, 2026