CVE-2025-2026
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-2026
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The NPort 6100-G2/6200-G2 Series is affected by a high-severity vulnerability (CVE-2025-2026) that allows remote attackers to execute a null byte injection through the device’s web API. This may lead to an unexpected device reboot and result in a denial-of-service (DoS) condition. An authenticated remote attacker with web read-only privileges can exploit the vulnerable API to inject malicious input. Successful exploitation may cause the device to reboot, disrupting normal operations and causing a temporary denial of service.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
不恰当的空终结符
Source: NVD (National Vulnerability Database)
Vulnerability Title
Moxa NPort 6100-G2 Series和Moxa NPort 6200-G2 Series 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Moxa NPort 6100-G2 Series和Moxa NPort 6200-G2 Series都是中国台湾Moxa公司的一系列安全终端服务器。 Moxa NPort 6100-G2 Series和Moxa NPort 6200-G2 Series存在安全漏洞,该漏洞源于设备Web API存在空字节注入,可能导致设备意外重启并造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Moxa | NPort 6100-G2/6200-G2 Series | 1.0.0 | - |
II. Public POCs for CVE-2025-2026
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Daftar CVE 2025-2026 terupdate | https://github.com/magercode/List-CVE-2025-2026 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-2026
请登录查看更多情报信息。
Same Patch Batch · Moxa · 2025-12-31 · 3 CVEs total
| CVE-2025-15017 | Moxa NPort 5000 Series 安全漏洞 | |
| CVE-2025-1977 | Moxa NPort 6100-G2 Series和Moxa NPort 6200-G2 Series 安全漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-170
- CVE-2026-34032
Apache HTTP Server: mod_proxy_ajp: Heap Buffer Over-Read Due - CVE-2026-40334
libgphoto2 missing null termination in ptp_unpack_Canon_FE() - CVE-2026-33948
jq: Embedded-NUL Truncation in CLI JSON Input Path Causes Pr - CVE-2026-2239
Gimp: gimp: application crash (dos) via crafted psd file due - CVE-2026-32837
mackron / miniaudio Out-of-Bounds Read in BEXT Coding Histor
V. Comments for CVE-2025-2026
No comments yet