CVE-2020-25196

Summary

The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower allows SSH/Telnet sessions, which may be vulnerable to brute force attacks to bypass authentication.

Affected Software

VendorProductVersion RangeStatus
MOXANPort IAW5000A-I/Ounspecified <= Version 2.1affected

Weaknesses

  • CWE-307: CWE-307: Improper Restriction of Excessive Authentication Attempts

ADP Enrichment

CVE Program Container

Additional References

References