Sign-up

ID

VAR-202510-3025


TITLE

Mosa Technology (Shanghai) Co., Ltd.'s NPort IA5250AI has an unauthorized access vulnerability.

Trust: 0.6

sources: CNVD: CNVD-2025-27768

DESCRIPTION

The NPort IA5250AI is an industrial-grade serial port device networking server. Mosa Technology (Shanghai) Co., Ltd.'s NPort IA5250AI contains an unauthorized access vulnerability, which attackers could exploit to obtain sensitive information.

Trust: 0.6

sources: CNVD: CNVD-2025-27768

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-27768

AFFECTED PRODUCTS

vendor:mosamodel:nport ia5250aiscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2025-27768

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2025-27768
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2025-27768
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2025-27768

PATCH

title:Patch for Mosa Technology (Shanghai) Co., Ltd.'s NPort IA5250AI has an unauthorized access vulnerability.url:https://www.cnvd.org.cn/patchInfo/show/752866

Trust: 0.6

sources: CNVD: CNVD-2025-27768

EXTERNAL IDS

db:CNVDid:CNVD-2025-27768

Trust: 0.6

sources: CNVD: CNVD-2025-27768

SOURCES

db:CNVDid:CNVD-2025-27768

LAST UPDATE DATE

2025-11-19T23:14:42.280000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-27768date:2025-11-12T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-27768date:2025-10-12T00:00:00