CVE-2020-25194

Summary

The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has improper privilege management, which may allow an attacker with user privileges to perform requests with administrative privileges.

Affected Software

VendorProductVersion RangeStatus
MOXANPort IAW5000A-I/Ounspecified <= Version 2.1affected

Weaknesses

  • CWE-269: CWE-269: Improper Privilege Management

ADP Enrichment

CVE Program Container

Additional References

References