ICSA-21-187-01 · Published 2021-07-06 · View on CISA ICS-CERT ↗

Moxa NPort IAW5000A-I/O Series Serial Device Server

CVSS 9.8 CRITICAL

Risk Summary

Successful exploitation of these vulnerabilities could crash the device being accessed, cause a buffer overflow condition, or allow remote code execution.

CVEs (4)

CVE-2021-32968 CVE-2021-32976 CVE-2021-32970 CVE-2021-32974

Remediations

Moxa has developed solutions to address these vulnerabilities. Please contact Moxa Technical Support for a security patch.
Moxa has also published a security advisory to provide more information.

Affected Vendors

Moxa

Affected Products (1)

Moxa · NPort IAW5000A-I/O Series firmware <= 2.2

Affected Sectors

Energy Sector

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more