Description
An acceptance of extraneous untrusted data with trusted data vulnerability has been identified in Moxa’s Ethernet switches, which allows attackers with administrative privileges to manipulate HTTP Host headers by injecting a specially crafted Host header into HTTP requests sent to an affected device’s web service. This vulnerability is classified as Host Header Injection, where invalid Host headers can manipulate to redirect users, forge links, or phishing attacks. There is no impact to the confidentiality, integrity, and availability of the affected device; no loss of confidentiality, integrity, and availability within any subsequent systems.
References (2)
Core 2
Core References
Various Sources vendor-advisory
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-257421-cve-2025-1679,-cve-2025-1680-stored-cross-site-scripting-(xss)-and-host-header-injection-vulnerabilities-in
Various Sources technical-description
https://www.hackrtu.com/blog/cg-technical-en-003/
Scores
CVSS v4
0.0
EPSS
0.0003
EPSS Percentile
8.6%
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:N/SI:N/SA:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-349
Status
published
Products (8)
Moxa/TN-4500A Series
1.0 - 3.13
Moxa/TN-4500A Series
4.0
Moxa/TN-5500A Series
1.0 - 3.13
Moxa/TN-5500A Series
4.0
Moxa/TN-G4500 Series
1.0 - 5.5
Moxa/TN-G4500 Series
5.5.255
Moxa/TN-G6500 Series
1.0 - 5.5
Moxa/TN-G6500 Series
5.5.255
Published
Oct 23, 2025
Tracked Since
Feb 18, 2026