Critical severity9.8NVD Advisory· Published Feb 13, 2017· Updated May 13, 2026

CVE-2016-9366

Description

An issue was discovered in Moxa NPort 5110 versions prior to 2.6, NPort 5130/5150 Series versions prior to 3.6, NPort 5200 Series versions prior to 2.8, NPort 5400 Series versions prior to 3.11, NPort 5600 Series versions prior to 3.7, NPort 5100A Series & NPort P5150A versions prior to 1.3, NPort 5200A Series versions prior to 1.3, NPort 5150AI-M12 Series versions prior to 1.2, NPort 5250AI-M12 Series versions prior to 1.2, NPort 5450AI-M12 Series versions prior to 1.2, NPort 5600-8-DT Series versions prior to 2.4, NPort 5600-8-DTL Series versions prior to 2.4, NPort 6x50 Series versions prior to 1.13.11, NPort IA5450A versions prior to v1.4. An attacker can freely use brute force to determine parameters needed to bypass authentication.

Affected products

Moxa/Nport 5100 Series Firmware
cpe:2.3:o:moxa:nport_5100_series_firmware:*:*:*:*:*:*:*:*
Range: <=2.5
Moxa/Nport 5200 Series Firmware
cpe:2.3:o:moxa:nport_5200_series_firmware:*:*:*:*:*:*:*:*
Range: <=2.7
Moxa/Nport 5400 Series Firmware
cpe:2.3:o:moxa:nport_5400_series_firmware:*:*:*:*:*:*:*:*
Range: <=3.10
Moxa/Nport 5600 Series Firmware
cpe:2.3:o:moxa:nport_5600_series_firmware:*:*:*:*:*:*:*:*
Range: <=3.6
Moxa/Nport 5100a Series Firmware
cpe:2.3:o:moxa:nport_5100a_series_firmware:*:*:*:*:*:*:*:*
Range: <=1.2
Moxa/Nport P5150a Series Firmware
cpe:2.3:o:moxa:nport_p5150a_series_firmware:*:*:*:*:*:*:*:*
Range: <=1.2
Moxa/Nport 5200a Series Firmware
cpe:2.3:o:moxa:nport_5200a_series_firmware:*:*:*:*:*:*:*:*
Range: <=1.2
Moxa/Nport 5x50a1 M12 Series Firmware
cpe:2.3:o:moxa:nport_5x50a1-m12_series_firmware:*:*:*:*:*:*:*:*
Range: <=1.1
Moxa/Nport 5600 8 Dtl Series Firmware
cpe:2.3:h:moxa:nport_5600-8-dtl_series_firmware:*:*:*:*:*:*:*:*
Range: <=2.3
Moxa/Nport 6100 Series Firmware
cpe:2.3:o:moxa:nport_6100_series_firmware:*:*:*:*:*:*:*:*
Range: <=1.13

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/85965nvdThird Party AdvisoryVDB Entry
ics-cert.us-cert.gov/advisories/ICSA-16-336-02nvdThird Party AdvisoryUS Government Resource

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000