CVE-2017-16715
Severity CVSS v4.0:
Pending analysis
Type:
CWE-200
Information Leak / Disclosure
Publication date:
16/11/2017
Last modified:
20/04/2025
Description
An Information Exposure issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to exploit a flaw in the handling of Ethernet frame padding that may allow for information exposure.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:moxa:nport_5110_firmware:2.2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:moxa:nport_5110_firmware:2.4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:moxa:nport_5110_firmware:2.6:*:*:*:*:*:*:* | ||
| cpe:2.3:o:moxa:nport_5110_firmware:2.7:*:*:*:*:*:*:* | ||
| cpe:2.3:h:moxa:nport_5110:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:moxa:nport_5130_firmware:*:*:*:*:*:*:*:* | 3.7 (including) | |
| cpe:2.3:h:moxa:nport_5130:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:moxa:nport_5150_firmware:*:*:*:*:*:*:*:* | 3.7 (including) | |
| cpe:2.3:h:moxa:nport_5150:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page