What is CVE-2020-27184?

CVE-2020-27184 is a vulnerability that affects the NPort IA5000A series devices, which use Telnet as one of their network device management services.

How does CVE-2020-27184 make the devices vulnerable?

CVE-2020-27184 makes the NPort IA5000A series devices vulnerable to Man-in-the-Middle attacks because Telnet does not support the encryption of client-server communications.

What is the severity of CVE-2020-27184?

CVE-2020-27184 has a severity value of 5.9 (medium).

How can I check if my device is affected by CVE-2020-27184?

To check if your device is affected by CVE-2020-27184, refer to the affected software section in the vulnerability description and check if your device matches any of the listed affected software versions.

How do I mitigate the vulnerability CVE-2020-27184?

To mitigate CVE-2020-27184, it is recommended to disable or replace Telnet with a more secure protocol, such as SSH, for network device management.

Vulnerability/
CVE-2020-27184

medium

5.9

CWE

319

14/5/2021

4/8/2024

CVE-2020-27184

First published: Fri May 14 2021(Updated: )

The NPort IA5000A Series devices use Telnet as one of the network device management services. Telnet does not support the encryption of client-server communications, making it vulnerable to Man-in-the-Middle attacks.

Credit: vulnerability@kaspersky.com

Affected Software	Affected Version	How to fix
Moxa Nport Ia5150a Firmware	<=1.4
Moxa Nport Ia5150a
Moxa Nport Ia5250a Firmware	<=1.4
Moxa Nport Ia5250a
Moxa Nport Ia5450a Firmware	<=1.7
Moxa Nport Ia5450a

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2020-27184?
CVE-2020-27184 is a vulnerability that affects the NPort IA5000A series devices, which use Telnet as one of their network device management services.
How does CVE-2020-27184 make the devices vulnerable?
CVE-2020-27184 makes the NPort IA5000A series devices vulnerable to Man-in-the-Middle attacks because Telnet does not support the encryption of client-server communications.
What is the severity of CVE-2020-27184?
CVE-2020-27184 has a severity value of 5.9 (medium).
How can I check if my device is affected by CVE-2020-27184?
To check if your device is affected by CVE-2020-27184, refer to the affected software section in the vulnerability description and check if your device matches any of the listed affected software versions.
How do I mitigate the vulnerability CVE-2020-27184?
To mitigate CVE-2020-27184, it is recommended to disable or replace Telnet with a more secure protocol, such as SSH, for network device management.

collector/nvd-index
agent/weakness
agent/type
agent/severity
agent/references
agent/author
agent/description
agent/event
agent/last-modified-date
agent/first-publish-date
agent/softwarecombine
agent/tags
collector/mitre-cve
source/MITRE
vendor/moxa
canonical/moxa nport ia5150a firmware
version/moxa nport ia5150a firmware/1.4
canonical/moxa nport ia5150a
canonical/moxa nport ia5250a firmware
version/moxa nport ia5250a firmware/1.4
canonical/moxa nport ia5250a
canonical/moxa nport ia5450a firmware
version/moxa nport ia5450a firmware/1.7
canonical/moxa nport ia5450a

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.