CNNVD-202508-3005 Information

CNNVD ID

CNNVD-202508-3005

Related CVE

CVE-2025-5191

• CNNVD Published: 2025-08-25

Description (Chinese)

Moxa Utility for DRP-A100 Series是中国台湾Moxa公司的一款简化设备的配置和管理的软件工具。 Moxa Utility for DRP-A100 Series存在安全漏洞，该漏洞源于SerialInterfaceService.exe未引用路径配置，可能导致权限提升。

Description (English)

Moxa Utility for DRP-A100 Series is a software tool for the configuration and management of a simplified equipment set by Moxa, Taiwan, China. There is a security loophole in Moxa Utility for DRP-A100 Series, which stems from the fact that the Seral InterfaceService.exe did not refer to the path configuration, which may lead to an increase in privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

摩莎

Published

2025-08-25

Last Modified

2026-02-24

References

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows) https://nvd.nist.gov/vuln/detail/CVE-2025-5191

Patch

https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)