CVE-2016-9367
First published: Mon Feb 13 2017(Updated: )
An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. The amount of resources requested by a malicious actor is not restricted, leading to a denial-of-service caused by resource exhaustion.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Moxa Nport 5100 Series Firmware | <=2.5 | |
| Moxa NPort 5110 | ||
| Moxa Nport 5100 Series Firmware | <=3.5 | |
| Moxa Nport 5130 | ||
| Moxa Nport 5150 | ||
| Moxa Nport 5200 Series Firmware | <=2.7 | |
| Moxa NPort 5210 | ||
| Moxa Nport 5230 | ||
| Moxa Nport 5232 | ||
| Moxa Nport 5232i | ||
| Moxa Nport 5400 Series Firmware | <=3.10 | |
| Moxa Nport 5410 | ||
| Moxa Nport 5430 | ||
| Moxa Nport 5430i | ||
| Moxa Nport 5450 | ||
| Moxa Nport 5450-t | ||
| Moxa Nport 5450i | ||
| Moxa Nport 5450i-t | ||
| Moxa Nport 5600 Series Firmware | <=3.6 | |
| Moxa Nport 5610 | ||
| Moxa Nport 5630 | ||
| Moxa Nport 5650 | ||
| Moxa Nport 5100a Series Firmware | <=1.2 | |
| Moxa Nport 5110a | ||
| Moxa Nport 5130a | ||
| Moxa Nport 5150a | ||
| Moxa Nport P5150a Series Firmware | <=1.2 | |
| Moxa Nport P5110a | ||
| Moxa Nport 5200a Series Firmware | <=1.2 | |
| Moxa Nport 5210a | ||
| Moxa Nport 5230a | ||
| Moxa Nport 5250a | ||
| Moxa Nport 5x50a1-m12 Series Firmware | <=1.1 | |
| Moxa Nport 5150a1-m12 | ||
| Moxa Nport 5150a1-m12-ct | ||
| Moxa Nport 5150a1-m12-ct-t | ||
| Moxa Nport 5150a1-m12-t | ||
| Moxa Nport 5250a1-m12 | ||
| Moxa Nport 5250a1-m12-ct | ||
| Moxa Nport 5250a1-m12-ct-t | ||
| Moxa Nport 5250a1-m12-t | ||
| Moxa Nport 5450a1-m12 | ||
| Moxa Nport 5450a1-m12-ct | ||
| Moxa Nport 5450a1-m12-ct-t | ||
| Moxa Nport 5450a1-m12-t | ||
| Moxa Nport 5600-8-dtl Series Firmware | <=2.3 | |
| Moxa Nport 5610-8-dtl | ||
| Moxa Nport 5650-8-dtl | ||
| Moxa Nport 5650i-8-dtl | ||
| Moxa Nport 6100 Series Firmware | <=1.13 | |
| Moxa Nport 6150 | ||
| Moxa Nport 6150-t |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2016-9367?
CVE-2016-9367 has been assessed with a high severity, as it may allow unauthorized access to the affected devices.
How do I fix CVE-2016-9367?
To mitigate CVE-2016-9367, users should update their Moxa NPort firmware to the latest versions specified for each affected series.
Which Moxa NPort series are affected by CVE-2016-9367?
CVE-2016-9367 affects multiple Moxa NPort series, including 5100, 5200, 5400, 5600, and others, dependent on specific firmware versions.
What could happen if CVE-2016-9367 is exploited?
Exploitation of CVE-2016-9367 could potentially lead to unauthorized access to sensitive data or control of the affected devices.
Is my Moxa device vulnerable to CVE-2016-9367?
To determine vulnerability, check if your Moxa device is using firmware versions prior to the recommended updates for your specific model.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- vendor/moxa
- canonical/moxa nport 5100 series firmware
- version/moxa nport 5100 series firmware/2.5
- canonical/moxa nport 5110
- version/moxa nport 5100 series firmware/3.5
- canonical/moxa nport 5130
- canonical/moxa nport 5150
- canonical/moxa nport 5200 series firmware
- version/moxa nport 5200 series firmware/2.7
- canonical/moxa nport 5210
- canonical/moxa nport 5230
- canonical/moxa nport 5232
- canonical/moxa nport 5232i
- canonical/moxa nport 5400 series firmware
- version/moxa nport 5400 series firmware/3.10
- canonical/moxa nport 5410
- canonical/moxa nport 5430
- canonical/moxa nport 5430i
- canonical/moxa nport 5450
- canonical/moxa nport 5450-t
- canonical/moxa nport 5450i
- canonical/moxa nport 5450i-t
- canonical/moxa nport 5600 series firmware
- version/moxa nport 5600 series firmware/3.6
- canonical/moxa nport 5610
- canonical/moxa nport 5630
- canonical/moxa nport 5650
- canonical/moxa nport 5100a series firmware
- version/moxa nport 5100a series firmware/1.2
- canonical/moxa nport 5110a
- canonical/moxa nport 5130a
- canonical/moxa nport 5150a
- canonical/moxa nport p5150a series firmware
- version/moxa nport p5150a series firmware/1.2
- canonical/moxa nport p5110a
- canonical/moxa nport 5200a series firmware
- version/moxa nport 5200a series firmware/1.2
- canonical/moxa nport 5210a
- canonical/moxa nport 5230a
- canonical/moxa nport 5250a
- canonical/moxa nport 5x50a1-m12 series firmware
- version/moxa nport 5x50a1-m12 series firmware/1.1
- canonical/moxa nport 5150a1-m12
- canonical/moxa nport 5150a1-m12-ct
- canonical/moxa nport 5150a1-m12-ct-t
- canonical/moxa nport 5150a1-m12-t
- canonical/moxa nport 5250a1-m12
- canonical/moxa nport 5250a1-m12-ct
- canonical/moxa nport 5250a1-m12-ct-t
- canonical/moxa nport 5250a1-m12-t
- canonical/moxa nport 5450a1-m12
- canonical/moxa nport 5450a1-m12-ct
- canonical/moxa nport 5450a1-m12-ct-t
- canonical/moxa nport 5450a1-m12-t
- canonical/moxa nport 5600-8-dtl series firmware
- version/moxa nport 5600-8-dtl series firmware/2.3
- canonical/moxa nport 5610-8-dtl
- canonical/moxa nport 5650-8-dtl
- canonical/moxa nport 5650i-8-dtl
- canonical/moxa nport 6100 series firmware
- version/moxa nport 6100 series firmware/1.13
- canonical/moxa nport 6150
- canonical/moxa nport 6150-t