CVE-2025-1679

MEDIUM

Moxa TN-4500A, TN-5500A, TN-G4500, TN-G6500 Series - Authenticated Stored Cross-Site Scripting

Title source: llm

Description

Cross-site Scripting has been identified in Moxa’s Ethernet switches, which allows an authenticated administrative attacker to inject malicious scripts to an affected device’s web service that could impact authenticated users interacting with the device’s web interface. This vulnerability is classified as stored cross-site scripting (XSS); attackers inject malicious scripts into the system, and the scripts persist across sessions. There is no impact to the confidentiality, integrity, and availability of the affected device; no loss of availability within any subsequent systems but has some loss of confidentiality and integrity within the subsequent system.

References (2)

Core 2

Core References

Various Sources vendor-advisory

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-257421-cve-2025-1679,-cve-2025-1680-stored-cross-site-scripting-(xss)-and-host-header-injection-vulnerabilities-in

Various Sources technical-description

https://www.hackrtu.com/blog/cg-technical-en-003/

Scores

CVSS v4 4.8

EPSS 0.0005

EPSS Percentile 16.9%

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (8)

Moxa/TN-4500A Series 1.0 - 3.13

Moxa/TN-4500A Series 4.0

Moxa/TN-5500A Series 1.0 - 3.13

Moxa/TN-5500A Series 4.0

Moxa/TN-G4500 Series 1.0 - 5.5

Moxa/TN-G4500 Series 5.5.255

Moxa/TN-G6500 Series 1.0 - 5.5

Moxa/TN-G6500 Series 5.5.255

Published Oct 23, 2025

Tracked Since Feb 18, 2026