CVE-2017-16719
HIGHMoxa NPort 5110, 5130, and 5150 - Denial of Service via Packet Injection
Title source: llmDescription
An Injection issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to inject packets that could potentially disrupt the availability of the device.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101885
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-17-320-01
Scores
CVSS v3
7.5
EPSS
0.0031
EPSS Percentile
54.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-74
Status
published
Products (7)
moxa/nport_5110_firmware
2.2
moxa/nport_5110_firmware
2.4
moxa/nport_5110_firmware
2.6
moxa/nport_5110_firmware
2.7
moxa/nport_5130_firmware
< 3.7
moxa/nport_5150_firmware
< 3.7
n/a/Moxa NPort 5110, 5130, and 5150
Moxa NPort 5110, 5130, and 5150
Published
Nov 16, 2017
Tracked Since
Feb 18, 2026