{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T04:15:11.630","vulnerabilities":[{"cve":{"id":"CVE-2024-1220","sourceIdentifier":"psirt@moxa.com","published":"2024-03-06T02:15:44.810","lastModified":"2025-02-25T17:42:20.793","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A stack-based buffer overflow in the built-in web server in Moxa NPort W2150A/W2250A Series firmware version 2.3 and prior allows a remote attacker to exploit the vulnerability by sending crafted payload to the web service. Successful exploitation of the vulnerability could result in denial of service.\n\n"},{"lang":"es","value":"Un desbordamiento de búfer en la región stack de la memoria en el servidor web integrado en la versión 2.3 y anteriores del firmware de la serie Moxa NPort W2150A/W2250A permite a un atacante remoto explotar la vulnerabilidad enviando un payload manipulado al servicio web. La explotación exitosa de la vulnerabilidad podría resultar en la denegación del servicio."}],"metrics":{"cvssMetricV31":[{"source":"psirt@moxa.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":4.2},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@moxa.com","type":"Secondary","description":[{"lang":"en","value":"CWE-121"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:moxa:nport_w2150a_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"2.3","matchCriteriaId":"B237CFAF-EFBB-4C81-BC6A-0D12E63CAA91"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:moxa:nport_w2150a:-:*:*:*:*:*:*:*","matchCriteriaId":"1E4BE331-7243-4BBC-BEFD-213B5C33441F"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:moxa:nport_w2250a_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"2.3","matchCriteriaId":"84549BD7-66FE-45F5-990F-B66421D80293"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:moxa:nport_w2250a:-:*:*:*:*:*:*:*","matchCriteriaId":"1D6E4427-6FD7-412F-B2EC-5A0E99A5E343"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:moxa:nport_w2150a-t_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"2.3","matchCriteriaId":"AF48CDC9-BA18-4619-A8DD-8E3DA812BC4A"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:moxa:nport_w2150a-t:-:*:*:*:*:*:*:*","matchCriteriaId":"D69E0437-3972-4E71-9296-73590722B065"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:moxa:nport_w2250a-t_firmware:*:*:*:*:*:*:*:*","versionEndIncluding":"2.3","matchCriteriaId":"17C6C8F8-596A-4996-9E19-91C30CF9FE35"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:moxa:nport_w2250a-t:-:*:*:*:*:*:*:*","matchCriteriaId":"869281AB-BBAB-4007-9F25-4DE4B1B0114B"}]}]}],"references":[{"url":"https://www.moxa.com/en/support/product-support/security-advisory/mpsa-238975-nport-w2150a-w2250a-series-web-server-stack-based-buffer-overflow-vulnerability","source":"psirt@moxa.com","tags":["Vendor Advisory"]},{"url":"https://www.moxa.com/en/support/product-support/security-advisory/mpsa-238975-nport-w2150a-w2250a-series-web-server-stack-based-buffer-overflow-vulnerability","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}