CVE-2025-0415

Summary

A remote attacker with web administrator privileges can exploit the device’s web interface to execute arbitrary system commands through the NTP settings. Successful exploitation may result in the device entering an infinite reboot loop, leading to a total or partial denial of connectivity for downstream systems that rely on its network services.

Affected Software

VendorProductVersion RangeStatus
MoxaEDF-G1002-BP Series1.0 <= 3.14affected
MoxaEDR-810 Series1.0 <= 5.12.39affected
MoxaEDR-8010 Series1.0 <= 3.14affected
MoxaEDR-G9004 Series1.0 <= 3.14affected
MoxaEDR-G9010 Series1.0 <= 3.14affected
MoxaOnCell G4302-LTE4 Series1.0 <= 3.14affected
MoxaTN-4900 Series1.0 <= 3.14affected
MoxaNAT-102 Series1.0 <= 3.15affected

Weaknesses

  • CWE-78: CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References