Privilege Escalation Vulnerability in MOXA NPort IAW5000A-I/O Firmware v2.1 or Lower

Privilege Escalation Vulnerability in MOXA NPort IAW5000A-I/O Firmware v2.1 or Lower

CVE-2020-25194 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

The built-in WEB server for MOXA NPort IAW5000A-I/O firmware version 2.1 or lower has improper privilege management, which may allow an attacker with user privileges to perform requests with administrative privileges.

Learn more about our Web App Pen Testing.