CVE 8.6 HIGH

CVE-2026-10829_CVE-2026-10829

June 16, 2026 invoker category_cve
8.6 / 10
HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

A stack-based buffer overflow vulnerability has been found in the NPort W2150A-W4/W2250A-W4 Series version 1.5 and earlier. This vulnerability stems from insufficient input validation of user-supplied input in the "Server location" parameter on the Basic settings page. An attacker could exploit this vulnerability by sending crafted input to the web service, resulting in memory corruption. Successful exploitation of this vulnerability could allow remote code execution on the target system with root privileges.

AI Analysis

Stack-based buffer overflow vulnerability due to insufficient input validation in the Server location parameter, allowing remote code execution with root privileges

Basic Information

ID CVE-2026-10829
Source Moxa
Published Jun 16, 2026 at 10:18

Affected Product

Vendor Moxa
Product NPort W2150A-W4/W2250A-W4 Series
Version 1.0
Affected Versions Moxa NPort W2150A-W4/W2250A-W4 Series 1.0
Moxa NPort W2150A/W2250A Series 1.0

CWE Classification

CWE-121

AI Assessment

AI Score 8.6 / 10
AI Severity High
Vendor Moxa
Product NPort W2150A-W4/W2250A-W4 Series
Version 1.5 and earlier

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.