First published: Mon May 06 2024(Updated: )
The NPort 5100A Series firmware version v1.6 and prior versions are affected by web server XSS vulnerability. The vulnerability is caused by not correctly neutralizing user-controllable input before placing it in output. Malicious users may use the vulnerability to get sensitive information and escalate privileges.
Credit: psirt@moxa.com
Moxa has developed appropriate solutions to address the vulnerabilities. The solutions for affected products are shown below: * NPort 5100A Series: Please contact Moxa Technical Support for the security patch (v1.6.3). https://www.moxa.com/tw/support/technical-support
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.