CVE-2016-9361

CVE

Critical

An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions …

CVSS

9.8

Critical

EPSS

0.50

p97

Published

2016-01-01

Updated

2016-01-01

Description

An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. Administration passwords can be retried without authenticating.

Tags · CWE

Pre-auth

CWE-287

CAPEC-22

CAPEC-57

CAPEC-94

CAPEC-114

CAPEC-115

CAPEC-151

CAPEC-194

CAPEC-593

CAPEC-633

CAPEC-650

Affected products

Nport_5100_series_firmwareNport_5100_series_firmwareNport_5100a_series_firmwareNport_5200_series_firmwareNport_5200a_series_firmwareNport_5400_series_firmwareNport_5600-8-dtl_series_firmwareNport_5600_series_firmwareNport_5x50a1-m12_series_firmwareNport_6100_series_firmwareNport_p5150a_series_firmware

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

2016-01-01

Published

2016-01-01

Updated

CVSS 3.1 breakdown

Attack Vector

AV: N

Network (N)

Attack Complexity

AC: L

Low (L)

Privileges Required

PR: N

None (N)

User Interaction

UI: N

None (N)

Scope

S: U

Unchanged (U)

Confidentiality Impact

C: H

High (H)

Integrity Impact

I: H

High (H)

Availability Impact

A: H

High (H)

Exploit indicators

EPSS

0.496 · p97

Known exploited (KEV)

MITRE ATT&CK

Inferred via CAPEC

T1040Network Sniffing

└ via CAPEC-57 · CWE-287

T1134Access Token Manipulation

└ via CAPEC-633 · CWE-287

T1185Browser Session Hijacking

└ via CAPEC-593 · CWE-287

T1505.003Web Shell

└ via CAPEC-650 · CWE-287

T1548Abuse Elevation Control Mechanism

└ via CAPEC-114 · CWE-287

T1550.001Application Access Token

└ via CAPEC-593 · CWE-287

T1557Adversary-in-the-Middle

└ via CAPEC-94 · CWE-287

T1563Remote Service Session Hijacking

└ via CAPEC-593 · CWE-287

Known exploits — Сканер-ВС

No Сканер-ВС checks registered for this vulnerability yet.

Affected software

Product	Vendor	Status
nport_5100_series_firmware	*	Tracked
nport_5100_series_firmware	*	Tracked
nport_5100a_series_firmware	*	Tracked
nport_5200_series_firmware	*	Tracked
nport_5200a_series_firmware	*	Tracked
nport_5400_series_firmware	*	Tracked
nport_5600-8-dtl_series_firmware	*	Tracked
nport_5600_series_firmware	*	Tracked
nport_5x50a1-m12_series_firmware	*	Tracked
nport_6100_series_firmware	*	Tracked
nport_p5150a_series_firmware	*	Tracked

Source databases

CVE

Related vulnerabilities

BDU:2023-02362