CVE-2023-4929 - Vulnerability Details

Description

All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices.

Published: 2023-10-03

Score: 6.5 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Moxa

NPort 5000AI-M12 Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 1.5

Moxa

NPort 5100 Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 3.10

Moxa

NPort 5100A Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 1.6

Moxa

NPort 5200 Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 2.12

Moxa

NPort 5200A Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 1.6

Moxa

NPort 5400 Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 3.14

Moxa

NPort 5600 Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 3.11

Moxa

NPort 5600-DT Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 2.9

Moxa

NPort IA5000 Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 2.1

Moxa

NPort IA5000A Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 2.0

Moxa

NPort IA5000A-I/O Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 2.0

Moxa

NPort IAW5000A-I/O Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 2.2

Moxa

NPort P5150A Series

unaffected

Version	Status	Constraints
`1.0`	affected	≤ 1.6

Configuration 1 [-]

AND

cpe:2.3:o:moxa:nport_5150ai-m12-ct-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150ai-m12-ct-t:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:moxa:nport_5250ai-m12-ct-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5250ai-m12-ct-t:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:moxa:nport_5150ai-m12-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150ai-m12-t:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:moxa:nport_5250ai-m12-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5250ai-m12-t:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:moxa:nport_5450ai-m12-ct-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450ai-m12-ct-t:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:moxa:nport_5150ai-m12_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150ai-m12:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:moxa:nport_5250ai-m12_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5250ai-m12:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:moxa:nport_5150ai-m12-ct_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150ai-m12-ct:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:moxa:nport_5250ai-m12-ct_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5250ai-m12-ct:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:moxa:nport_5450ai-m12-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450ai-m12-t:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:moxa:nport_5450ai-m12_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450ai-m12:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:moxa:nport_5450ai-m12-ct_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450ai-m12-ct:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:moxa:nport_5130_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5130:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:moxa:nport_5150_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:moxa:nport_5110_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5110:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:moxa:nport_5110-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5110-t:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:moxa:nport_5110a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5110a:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:moxa:nport_5110a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5110a-t:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:moxa:nport_5130a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5130a:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:moxa:nport_5130a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5130a-t:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:moxa:nport_5150a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150a:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:moxa:nport_5150a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5150a-t:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:moxa:nport_5210a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5210a:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:moxa:nport_5210a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5210a-t:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:moxa:nport_5230a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5230a:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:moxa:nport_5230a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5230a-t:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:moxa:nport_5250a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5250a:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:moxa:nport_5250a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5250a-t:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:moxa:nport_5210_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5210:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:moxa:nport_5232_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5232:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:moxa:nport_5210-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5210-t:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:moxa:nport_5232-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5232-t:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:moxa:nport_5230-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5230-t:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:moxa:nport_5232i-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5232i-t:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:moxa:nport_5230_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5230:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:moxa:nport_5232i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5232i:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

OR	cpe:2.3:o:moxa:nport_5410_firmware::::::::
	cpe:2.3:o:moxa:nport_5410_firmware::::::::

cpe:2.3:h:moxa:nport_5410:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

OR	cpe:2.3:o:moxa:nport_5430_firmware::::::::
	cpe:2.3:o:moxa:nport_5430_firmware::::::::

cpe:2.3:h:moxa:nport_5430:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:moxa:nport_5450_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:moxa:nport_5450i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450i:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:moxa:nport_5450-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450-t:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:moxa:nport_5450i-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5450i-t:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:moxa:nport_5610-8-48v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-8-48v:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:moxa:nport_5630-16_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5630-16:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

cpe:2.3:o:moxa:nport_5630-8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5630-8:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

cpe:2.3:o:moxa:nport_5650-8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

cpe:2.3:o:moxa:nport_5610-16_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-16:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-m-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-m-sc:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-t:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:moxa:nport_5650-16-s-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-16-s-sc:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-hv-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-hv-t:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:moxa:nport_5650-16-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-16-t:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

cpe:2.3:o:moxa:nport_5650-16_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-16:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:moxa:nport_5650-16-hv-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-16-hv-t:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:moxa:nport_5610-8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-8:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:moxa:nport_5610-16-48v_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-16-48v:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-s-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-s-sc:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

cpe:2.3:o:moxa:nport_5650-16-m-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-16-m-sc:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

cpe:2.3:o:moxa:nport_5610-8-dt_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-8-dt:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

cpe:2.3:o:moxa:nport_5610-8-dt-j_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-8-dt-j:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-dt_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-dt:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-dt-j_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-dt-j:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

cpe:2.3:o:moxa:nport_5650i-8-dt_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650i-8-dt:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

cpe:2.3:o:moxa:nport_5610-8-dt-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5610-8-dt-t:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

cpe:2.3:o:moxa:nport_5650i-8-dt-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650i-8-dt-t:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:o:moxa:nport_5650-8-dt-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_5650-8-dt-t:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-sc:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-m-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-m-sc:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-s-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-s-sc:-:*:*:*:*:*:*:*

Configuration 72 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-s-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-s-sc:-:*:*:*:*:*:*:*

Configuration 73 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-t:-:*:*:*:*:*:*:*

Configuration 74 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-t:-:*:*:*:*:*:*:*

Configuration 75 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-sc-t:-:*:*:*:*:*:*:*

Configuration 76 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-m-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-m-sc-t:-:*:*:*:*:*:*:*

Configuration 77 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-s-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-s-sc-t:-:*:*:*:*:*:*:*

Configuration 78 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-s-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-s-sc-t:-:*:*:*:*:*:*:*

Configuration 79 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250:-:*:*:*:*:*:*:*

Configuration 80 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250-t:-:*:*:*:*:*:*:*

Configuration 81 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-st_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-st:-:*:*:*:*:*:*:*

Configuration 82 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-st-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-st-t:-:*:*:*:*:*:*:*

Configuration 83 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250i:-:*:*:*:*:*:*:*

Configuration 84 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250i-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250i-t:-:*:*:*:*:*:*:*

Configuration 85 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150:2.0:*:*:*:*:*:*:*

Configuration 86 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i:2.0:*:*:*:*:*:*:*

Configuration 87 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-sc:2.0:*:*:*:*:*:*:*

Configuration 88 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-m-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-m-sc:2.0:*:*:*:*:*:*:*

Configuration 89 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-s-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-s-sc:2.0:*:*:*:*:*:*:*

Configuration 90 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-s-sc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-s-sc:2.0:*:*:*:*:*:*:*

Configuration 91 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-t:2.0:*:*:*:*:*:*:*

Configuration 92 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-t:2.0:*:*:*:*:*:*:*

Configuration 93 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-sc-t:2.0:*:*:*:*:*:*:*

Configuration 94 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-m-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-m-sc-t:2.0:*:*:*:*:*:*:*

Configuration 95 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-s-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-s-sc-t:2.0:*:*:*:*:*:*:*

Configuration 96 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150i-s-sc-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150i-s-sc-t:2.0:*:*:*:*:*:*:*

Configuration 97 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250:2.0:*:*:*:*:*:*:*

Configuration 98 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250-t:2.0:*:*:*:*:*:*:*

Configuration 99 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-st_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-st:2.0:*:*:*:*:*:*:*

Configuration 100 [-]

AND

cpe:2.3:o:moxa:nport_ia-5150-m-st-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5150-m-st-t:2.0:*:*:*:*:*:*:*

Configuration 101 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250i:2.0:*:*:*:*:*:*:*

Configuration 102 [-]

AND

cpe:2.3:o:moxa:nport_ia-5250i-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia-5250i-t:2.0:*:*:*:*:*:*:*

Configuration 103 [-]

AND

cpe:2.3:o:moxa:nport_ia5450a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5450a:-:*:*:*:*:*:*:*

Configuration 104 [-]

AND

cpe:2.3:o:moxa:nport_ia5450ai_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5450ai:-:*:*:*:*:*:*:*

Configuration 105 [-]

AND

cpe:2.3:o:moxa:nport_ia5450ai-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5450ai-t:-:*:*:*:*:*:*:*

Configuration 106 [-]

AND

cpe:2.3:o:moxa:nport_ia5450a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5450a-t:-:*:*:*:*:*:*:*

Configuration 107 [-]

AND

cpe:2.3:o:moxa:nport_ia5150a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150a:-:*:*:*:*:*:*:*

Configuration 108 [-]

AND

cpe:2.3:o:moxa:nport_ia5150ai_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150ai:-:*:*:*:*:*:*:*

Configuration 109 [-]

AND

cpe:2.3:o:moxa:nport_ia5150ai-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150ai-t:-:*:*:*:*:*:*:*

Configuration 110 [-]

AND

cpe:2.3:o:moxa:nport_ia5150a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150a-t:-:*:*:*:*:*:*:*

Configuration 111 [-]

AND

cpe:2.3:o:moxa:nport_ia5250a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250a:-:*:*:*:*:*:*:*

Configuration 112 [-]

AND

cpe:2.3:o:moxa:nport_ia5250ai_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250ai:-:*:*:*:*:*:*:*

Configuration 113 [-]

AND

cpe:2.3:o:moxa:nport_ia5250ai-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250ai-t:-:*:*:*:*:*:*:*

Configuration 114 [-]

AND

cpe:2.3:o:moxa:nport_ia5250a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250a-t:-:*:*:*:*:*:*:*

Configuration 115 [-]

AND

cpe:2.3:o:moxa:nport_ia5150a-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150a-iex:-:*:*:*:*:*:*:*

Configuration 116 [-]

AND

cpe:2.3:o:moxa:nport_ia5150ai-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150ai-iex:-:*:*:*:*:*:*:*

Configuration 117 [-]

AND

cpe:2.3:o:moxa:nport_ia5150ai-t-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150ai-t-iex:-:*:*:*:*:*:*:*

Configuration 118 [-]

AND

cpe:2.3:o:moxa:nport_ia5150a-t-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5150a-t-iex:-:*:*:*:*:*:*:*

Configuration 119 [-]

AND

cpe:2.3:o:moxa:nport_ia5250a-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250a-iex:-:*:*:*:*:*:*:*

Configuration 120 [-]

AND

cpe:2.3:o:moxa:nport_ia5250ai-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250ai-iex:-:*:*:*:*:*:*:*

Configuration 121 [-]

AND

cpe:2.3:o:moxa:nport_ia5250ai-t-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250ai-t-iex:-:*:*:*:*:*:*:*

Configuration 122 [-]

AND

cpe:2.3:o:moxa:nport_ia5250a-t-iex_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5250a-t-iex:-:*:*:*:*:*:*:*

Configuration 123 [-]

AND

cpe:2.3:o:moxa:nport_ia5000a-i\/o_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_ia5000a-i\/o:-:*:*:*:*:*:*:*

Configuration 124 [-]

AND

cpe:2.3:o:moxa:nport_iaw5000a-i\/o_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_iaw5000a-i\/o:-:*:*:*:*:*:*:*

Configuration 125 [-]

AND

cpe:2.3:o:moxa:nport_p5150a_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_p5150a:-:*:*:*:*:*:*:*

Configuration 126 [-]

AND

cpe:2.3:o:moxa:nport_p5150a-t_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:moxa:nport_p5150a-t:-:*:*:*:*:*:*:*

No data.

No data available yet.

Remediation

Vendor Solution

Due to design restrictions, we could not fix this vulnerability in NPort 5000 Series. We suggest users follow the instructions in the hardening guide https://www.moxa.com/getmedia/67b5e549-a125-4a6a-b99b-23017c75cfc1/moxa-the-security-hardening-guide-for-the-nport-5000-series-tech-note-v1.1.pdf in order to mitigate this vulnerability. Additionally, refer to the following mitigation measures to deploy the product in an appropriate product security context. Moxa recommends users follow these CISA recommendations. Users should * Reduce network exposure by ensuring that all control system devices and systems are not accessible from the Internet. * Place control system networks and remote devices behind firewalls, isolating them from business networks. * When remote access is necessary, employ secure methods such as Virtual Private Networks (VPNs). It is important to note that VPNs may have vulnerabilities and should be kept up to date with the latest available version. Remember that the security of a VPN depends on the security of its connected devices.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2023-54765	All firmware versions of the NPort 5000 Series are affected by an improper validation of integrity check vulnerability. This vulnerability results from insufficient checks on firmware updates or upgrades, potentially allowing malicious users to manipulate the firmware and gain control of devices.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00042.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-233328-nport-5000-series-firmware-improper-validation-of-integrity-check-vulnerability

History

Mon, 23 Sep 2024 14:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Moxa nport 5100 Moxa nport 5100a Moxa nport 5100ai M12 Moxa nport 5200 Series Firmware Moxa nport 5200a Series Firmware Moxa nport 5600 Dt Moxa nport 5600 Series Firmware Moxa nport Ia 5000 Moxa nport Ia 5000a Moxa nport Ia 5000a Io Moxa nport Iaw 5000a Io
CPEs		cpe:2.3:a:moxa:nport_5100:::::::: cpe:2.3:a:moxa:nport_5100ai_m12:::::::: cpe:2.3:a:moxa:nport_5600_dt:::::::: cpe:2.3:a:moxa:nport_5600_series_firmware:::::::: cpe:2.3:a:moxa:nport_ia_5000:::::::: cpe:2.3:a:moxa:nport_ia_5000a:::::::: cpe:2.3:a:moxa:nport_ia_5000a_io:::::::: cpe:2.3:a:moxa:nport_iaw_5000a_io:::::::: cpe:2.3:a:moxa:nport_p5150a:::::::: cpe:2.3:h:moxa:nport_5100a:-:::::::* cpe:2.3:o:moxa:nport_5200_series_firmware:2.7:::::::* cpe:2.3:o:moxa:nport_5200a_series_firmware:1.2:::::::*
Vendors & Products		Moxa nport 5100 Moxa nport 5100a Moxa nport 5100ai M12 Moxa nport 5200 Series Firmware Moxa nport 5200a Series Firmware Moxa nport 5600 Dt Moxa nport 5600 Series Firmware Moxa nport Ia 5000 Moxa nport Ia 5000a Moxa nport Ia 5000a Io Moxa nport Iaw 5000a Io
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Subscriptions

Moxa Nport 5100 Nport 5100a Nport 5100ai M12 Nport 5110 Nport 5110-t Nport 5110-t Firmware Nport 5110 Firmware Nport 5110a Nport 5110a-t Nport 5110a-t Firmware Nport 5110a Firmware Nport 5130 Nport 5130 Firmware Nport 5130a Nport 5130a-t Nport 5130a-t Firmware Nport 5130a Firmware Nport 5150 Nport 5150 Firmware Nport 5150a Nport 5150a-t Nport 5150a-t Firmware Nport 5150a Firmware Nport 5150ai-m12 Nport 5150ai-m12-ct Nport 5150ai-m12-ct-t Nport 5150ai-m12-ct-t Firmware Nport 5150ai-m12-ct Firmware Nport 5150ai-m12-t Nport 5150ai-m12-t Firmware Nport 5150ai-m12 Firmware Nport 5200 Series Firmware Nport 5200a Series Firmware Nport 5210 Nport 5210-t Nport 5210-t Firmware Nport 5210 Firmware Nport 5210a Nport 5210a-t Nport 5210a-t Firmware Nport 5210a Firmware Nport 5230 Nport 5230-t Nport 5230-t Firmware Nport 5230 Firmware Nport 5230a Nport 5230a-t Nport 5230a-t Firmware Nport 5230a Firmware Nport 5232 Nport 5232-t Nport 5232-t Firmware Nport 5232 Firmware Nport 5232i Nport 5232i-t Nport 5232i-t Firmware Nport 5232i Firmware Nport 5250a Nport 5250a-t Nport 5250a-t Firmware Nport 5250a Firmware Nport 5250ai-m12 Nport 5250ai-m12-ct Nport 5250ai-m12-ct-t Nport 5250ai-m12-ct-t Firmware Nport 5250ai-m12-ct Firmware Nport 5250ai-m12-t Nport 5250ai-m12-t Firmware Nport 5250ai-m12 Firmware Nport 5410 Nport 5410 Firmware Nport 5430 Nport 5430 Firmware Nport 5450 Nport 5450-t Nport 5450-t Firmware Nport 5450 Firmware Nport 5450ai-m12 Nport 5450ai-m12-ct Nport 5450ai-m12-ct-t Nport 5450ai-m12-ct-t Firmware Nport 5450ai-m12-ct Firmware Nport 5450ai-m12-t Nport 5450ai-m12-t Firmware Nport 5450ai-m12 Firmware Nport 5450i Nport 5450i-t Nport 5450i-t Firmware Nport 5450i Firmware Nport 5600 Dt Nport 5600 Series Firmware Nport 5610-16 Nport 5610-16-48v Nport 5610-16-48v Firmware Nport 5610-16 Firmware Nport 5610-8 Nport 5610-8-48v Nport 5610-8-48v Firmware Nport 5610-8-dt Nport 5610-8-dt-j Nport 5610-8-dt-j Firmware Nport 5610-8-dt-t Nport 5610-8-dt-t Firmware Nport 5610-8-dt Firmware Nport 5610-8 Firmware Nport 5630-16 Nport 5630-16 Firmware Nport 5630-8 Nport 5630-8 Firmware Nport 5650-16 Nport 5650-16-hv-t Nport 5650-16-hv-t Firmware Nport 5650-16-m-sc Nport 5650-16-m-sc Firmware Nport 5650-16-s-sc Nport 5650-16-s-sc Firmware Nport 5650-16-t Nport 5650-16-t Firmware Nport 5650-16 Firmware Nport 5650-8 Nport 5650-8-dt Nport 5650-8-dt-j Nport 5650-8-dt-j Firmware Nport 5650-8-dt-t Nport 5650-8-dt-t Firmware Nport 5650-8-dt Firmware Nport 5650-8-hv-t Nport 5650-8-hv-t Firmware Nport 5650-8-m-sc Nport 5650-8-m-sc Firmware Nport 5650-8-s-sc Nport 5650-8-s-sc Firmware Nport 5650-8-t Nport 5650-8-t Firmware Nport 5650-8 Firmware Nport 5650i-8-dt Nport 5650i-8-dt-t Nport 5650i-8-dt-t Firmware Nport 5650i-8-dt Firmware Nport Ia-5150 Nport Ia-5150-m-sc Nport Ia-5150-m-sc-t Nport Ia-5150-m-sc-t Firmware Nport Ia-5150-m-sc Firmware Nport Ia-5150-m-st Nport Ia-5150-m-st-t Nport Ia-5150-m-st-t Firmware Nport Ia-5150-m-st Firmware Nport Ia-5150-s-sc Nport Ia-5150-s-sc-t Nport Ia-5150-s-sc-t Firmware Nport Ia-5150-s-sc Firmware Nport Ia-5150-t Nport Ia-5150-t Firmware Nport Ia-5150 Firmware Nport Ia-5150i Nport Ia-5150i-m-sc Nport Ia-5150i-m-sc-t Nport Ia-5150i-m-sc-t Firmware Nport Ia-5150i-m-sc Firmware Nport Ia-5150i-s-sc Nport Ia-5150i-s-sc-t Nport Ia-5150i-s-sc-t Firmware Nport Ia-5150i-s-sc Firmware Nport Ia-5150i-t Nport Ia-5150i-t Firmware Nport Ia-5150i Firmware Nport Ia-5250 Nport Ia-5250-t Nport Ia-5250-t Firmware Nport Ia-5250 Firmware Nport Ia-5250i Nport Ia-5250i-t Nport Ia-5250i-t Firmware Nport Ia-5250i Firmware Nport Ia5000a-i\/o Nport Ia5000a-i\/o Firmware Nport Ia5150a Nport Ia5150a-iex Nport Ia5150a-iex Firmware Nport Ia5150a-t Nport Ia5150a-t-iex Nport Ia5150a-t-iex Firmware Nport Ia5150a-t Firmware Nport Ia5150a Firmware Nport Ia5150ai Nport Ia5150ai-iex Nport Ia5150ai-iex Firmware Nport Ia5150ai-t Nport Ia5150ai-t-iex Nport Ia5150ai-t-iex Firmware Nport Ia5150ai-t Firmware Nport Ia5150ai Firmware Nport Ia5250a Nport Ia5250a-iex Nport Ia5250a-iex Firmware Nport Ia5250a-t Nport Ia5250a-t-iex Nport Ia5250a-t-iex Firmware Nport Ia5250a-t Firmware Nport Ia5250a Firmware Nport Ia5250ai Nport Ia5250ai-iex Nport Ia5250ai-iex Firmware Nport Ia5250ai-t Nport Ia5250ai-t-iex Nport Ia5250ai-t-iex Firmware Nport Ia5250ai-t Firmware Nport Ia5250ai Firmware Nport Ia5450a Nport Ia5450a-t Nport Ia5450a-t Firmware Nport Ia5450a Firmware Nport Ia5450ai Nport Ia5450ai-t Nport Ia5450ai-t Firmware Nport Ia5450ai Firmware Nport Ia 5000 Nport Ia 5000a Nport Ia 5000a Io Nport Iaw5000a-i\/o Nport Iaw5000a-i\/o Firmware Nport Iaw 5000a Io Nport P5150a Nport P5150a-t Nport P5150a-t Firmware Nport P5150a Firmware

MITRE

Status: PUBLISHED

Assigner: Moxa

Published: 2023-10-03T13:54:49.293Z

Updated: 2024-09-23T13:29:04.471Z

Reserved: 2023-09-13T01:12:13.466Z

Link: CVE-2023-4929

Vulnrichment

Updated: 2024-08-02T07:44:52.628Z

NVD

Status : Modified

Published: 2023-10-03T14:15:11.307

Modified: 2024-11-21T08:36:17.250

Link: CVE-2023-4929

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-354

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object