An Injection issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to inject packets that could potentially disrupt the availability of the device.
The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Nport_5110_firmware | Moxa | 2.2 (including) | 2.2 (including) |
| Nport_5110_firmware | Moxa | 2.4 (including) | 2.4 (including) |
| Nport_5110_firmware | Moxa | 2.6 (including) | 2.6 (including) |
| Nport_5110_firmware | Moxa | 2.7 (including) | 2.7 (including) |