CVE-2025-2026

Summary

The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability (CVE-2025-2026) that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service (DoS) condition.

An authenticated remote attacker with web read-only privileges can exploit the vulnerable API to inject malicious input. Successful exploitation may cause the device to reboot, disrupting normal operations and causing a temporary denial of service.

Affected Software

VendorProductVersion RangeStatus
MoxaNPort 6100-G2/6200-G2 Series1.0.0affected
MoxaNPort 6100-G2/6200-G2 Series1.1.0unaffected

Weaknesses

  • CWE-170: CWE-170: Improper Null Termination

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References