- Description
- This vulnerability involves command injection in tcpdump within Moxa products, enabling an authenticated attacker with console access to exploit improper input validation to inject and execute systems commands. Successful exploitation could result in privilege escalation, allowing the attacker to gain root shell access and maintain persistent control over the device, potentially disrupting network services and affecting the availability of downstream systems that rely on its connectivity.
- Source
- psirt@moxa.com
- NVD status
- Awaiting Analysis
CVSS 4.0
- Type
- Secondary
- Base score
- 8.6
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- HIGH
- psirt@moxa.com
- CWE-78
- Hype score
- Not currently trending
#Vulnerability #CVE20250676 CVE-2025-0676: High-Severity Vulnerability Threatens Moxa Network Devices https://t.co/y93ioBnqEU
@Komodosec
7 Jun 2025
43 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-0676: High-Severity Vulnerability Threatens Moxa Network Devices https://t.co/hoxq1BYmv9
@Dinosn
2 Apr 2025
3214 Impressions
17 Retweets
54 Likes
11 Bookmarks
1 Reply
0 Quotes
CVE-2025-0676: High-Severity Vulnerability Threatens Moxa Network Devices Learn about CVE-2025-0676 and the security risks posed by #Moxa routers. Protect your network from potential exploits. https://t.co/UoEYD6jDEN
@the_yellow_fall
2 Apr 2025
125 Impressions
0 Retweets
1 Like
1 Bookmark
0 Replies
0 Quotes