CVE-2021-25848
Published May 10, 2021
Last updated 3 years ago
Overview
- Description
- Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to using fixed loop counter variable without checking the actual available length via a crafted lldp packet.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 9.1
- Impact score
- 5.2
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 8.5
- Impact score
- 7.8
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:C
Weaknesses
- nvd@nist.gov
- CWE-125
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v26m:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7AB3C716-2ECC-44B7-9AD9-7F198ABE7B24"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v26m_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7A045609-DB72-4D4E-96EB-F43A03E6AAE4",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v36m-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "B868CC06-2F7F-4951-88BF-37488D52FC55"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v36m-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "15F70B46-0F34-46DE-AE74-C7468E634285",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v36m-ct_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E748BCD-CBB5-4FB2-9DE0-3B3B7E5304A5",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v36m-ct:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4A2B0E14-196A-47C2-A721-7DBF15E5F06F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v36m-ct-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "73F035BE-103B-466D-8AC7-1CEF91072C4D",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v36m-ct-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6A855BB2-C047-452E-9DD9-2C3233FAB568"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8AF372A2-E2D2-40B4-8BA5-205C53CDAF40",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "729825E5-E15A-487B-9FDD-153ED5488BA9"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E8DCAC04-4AB7-47B8-A9F7-92EB8D4B4E81",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D940BF75-4F82-4D20-991E-BD4EB0F4ED1C"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m-ct_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2AC04DAF-F491-4934-96FD-F86D51C81428",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m-ct:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1989369B-A59E-4281-8896-5EC6C6B035A7"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v42m-ct-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E932C821-8B10-409C-BB75-839314C51799",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v42m-ct-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "9EAB1E29-5138-4BDA-A314-4BCA75599600"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A92C31E4-45BB-4598-AB2C-BDA3BC8FF0A1",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "65C52196-9B1A-45BC-B14F-E2A1D7DDCDE8"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B51442C2-72B1-4A5D-A6F2-DB41B8FE1219",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "6C7E4C20-9544-4B83-8113-36F4AC9D55CD"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m-ct_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C9D8EDFF-ED6D-452C-9BC9-80C678DF074F",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m-ct:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "EF751858-BDA7-4771-80D1-72106C418C96"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v60m-ct-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34990DFD-AB95-4A6D-A480-BC68001D4965",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v60m-ct-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7CE0C80E-8849-4271-90F6-813371C84AE8"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A696CAEC-DF2A-4316-B7D6-1D7F841692E0",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "4DBA1F22-198C-4DCB-9A82-D7B350B27B33"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2FB44FAB-EFE6-4D98-AFDD-7E466D1CC356",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "442FAF51-C13B-47B9-BC98-287778244A55"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m-ct_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "73BCB213-2D83-40D2-913B-5331BEFFC53C",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m-ct:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "89117711-F723-4AC6-AB0E-40B71CDB3E0F"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:moxa:vport_06ec-2v80m-ct-t_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B5097591-8E80-42D1-A14A-5DD8EBF75EC0",
"versionEndIncluding": "1.1"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:moxa:vport_06ec-2v80m-ct-t:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "E07DB8C8-41D7-462E-9AFD-C28ACBB3E0F5"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]