CVE-2020-27150
published 2021-05-14CVE-2020-27150: In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
In multiple versions of NPort IA5000A Series, the result of exporting a device’s configuration contains the passwords of all users on the system and other sensitive data in the original form if “Pre-shared key” doesn’t set.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| moxa | nport_ia5150a_firmware | <= 1.4 | — |
| moxa | nport_ia5250a_firmware | <= 1.4 | — |
| moxa | nport_ia5450a_firmware | <= 1.7 | — |