CVE-2017-16715
HIGHMoxa NPort 5110, 5130, and 5150 - Information Exposure via Ethernet Frame Padding
Title source: llmDescription
An Information Exposure issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to exploit a flaw in the handling of Ethernet frame padding that may allow for information exposure.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101885
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-17-320-01
Scores
CVSS v3
7.5
EPSS
0.0024
EPSS Percentile
47.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (7)
moxa/nport_5110_firmware
2.2
moxa/nport_5110_firmware
2.4
moxa/nport_5110_firmware
2.6
moxa/nport_5110_firmware
2.7
moxa/nport_5130_firmware
< 3.7
moxa/nport_5150_firmware
< 3.7
n/a/Moxa NPort 5110, 5130, and 5150
Moxa NPort 5110, 5130, and 5150
Published
Nov 16, 2017
Tracked Since
Feb 18, 2026