Vulnerability Description
A Resource Exhaustion issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Version 3.7 and prior. An attacker may be able to exhaust memory resources by sending a large amount of TCP SYN packets.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Moxa | Nport 5110 Firmware | 2.2 |
| Moxa | Nport 5110 | - |
| Moxa | Nport 5130 Firmware | <= 3.7 |
| Moxa | Nport 5130 | - |
| Moxa | Nport 5150 Firmware | <= 3.7 |
| Moxa | Nport 5150 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/101885Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-320-01Third Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/101885Third Party AdvisoryVDB Entry
- https://ics-cert.us-cert.gov/advisories/ICSA-17-320-01Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2017-14028?
CVE-2017-14028 is a vulnerability with a CVSS score of 7.5 (HIGH). A Resource Exhaustion issue was discovered in Moxa NPort 5110 Version 2.2, NPort 5110 Version 2.4, NPort 5110 Version 2.6, NPort 5110 Version 2.7, NPort 5130 Version 3.7 and prior, and NPort 5150 Vers...
How severe is CVE-2017-14028?
CVE-2017-14028 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-14028?
Check the references section above for vendor advisories and patch information. Affected products include: Moxa Nport 5110 Firmware, Moxa Nport 5110, Moxa Nport 5130 Firmware, Moxa Nport 5130, Moxa Nport 5150 Firmware.