CVE-2025-15017 — Active Debug Code in Nport 5000ai-m12 Series

CWE-489 — Active Debug Code3 documents3 sources

Severity

7.0HIGHNVD

EPSS

0.1%

top 83.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Moxa Nport 5000ai-m12 Series Moxa Nport 5100 Series Moxa Nport 5100a Series +8 more

Timeline

PublishedDec 31

Description

A vulnerability exists in serial device servers where active debug code remains enabled in the UART interface. An attacker with physical access to the device can directly connect to the UART interface and, without authentication, user interaction, or execution conditions, gain unauthorized access to internal debug functionality. Exploitation is low complexity and allows an attacker to execute privileged operations and access sensitive system resources, resulting in a high impact to the confident…

CVSS vector

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages11 packages

▶CVEListV5moxa/nport_5100_series1.0

▶CVEListV5moxa/nport_5200_series1.0

▶CVEListV5moxa/nport_5400_series1.0

▶CVEListV5moxa/nport_5600_series1.0

▶CVEListV5moxa/nport_5100a_series1.0

🔴Vulnerability Details

GHSA

GHSA-r3r9-v3q6-hv5j: A vulnerability exists in serial device servers where active debug code remains enabled in the UART interface↗2025-12-31

▶

CVEList

CVE-2025-15017: A vulnerability exists in serial device servers where active debug code remains enabled in the UART interface↗2025-12-31

▶