CVE-2020-27149
published 2021-05-14CVE-2020-27149: By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNIHAN
By exploiting a vulnerability in NPort IA5150A/IA5250A Series before version 1.5, a user with “Read Only” privilege level can send requests via the web console to have the device’s configuration changed.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | nport_ia5150a_firmware | < 1.5 | 1.5 |
| moxa | nport_ia5250a_firmware | < 1.5 | 1.5 |
| moxa | nport_ia5450a_firmware | < 2.0 | 2.0 |