NVD disclosure day
CVE-2016-9369
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A vulnerability in Moxa NPort devices permits unauthenticated firmware updates, potentially leading to remote code execution. This impacts organizations by risking system compromise and operational disruption. The realistic business risk involves unauthorized control over industrial processes or data exfiltration.
CVE-2016-9366
Halo Surface Signal: 3 out of 5 — possibly public-facing.
Certain Moxa NPort devices are susceptible to an authentication bypass vulnerability. Attackers can exploit this by using brute force to determine parameters, potentially leading to unauthorized access and control of industrial systems. This poses a business risk by impacting operations and data security.
CVE-2016-9361
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
Moxa NPort devices are affected by a vulnerability that allows for unauthenticated password retries, potentially leading to unauthorized administrative access. This could impact system integrity and data confidentiality, posing a business risk to organizations utilizing these industrial communication gateways.Moxa NPor