RCE in Moxa Edf-g1002-bp Series

CVE-2025-0415

A remote attacker with web administrator privileges can exploit the device’s web interface to execute arbitrary system commands through the NTP settings. Successful exploitation may result in the device entering an infinite reboot loop, le…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.008 (73.6th percentile) — read the EPSS interpretation.

Affected products

Moxa Edf-g1002-bp Series — versions 1.0
Moxa Edr-8010 Series — versions 1.0
Moxa Edr-810 Series — versions 1.0
Moxa Edr-g9004 Series — versions 1.0
Moxa Edr-g9010 Series — versions 1.0
Moxa Nat-102 Series — versions 1.0
Moxa Oncell G4302-lte4 Series — versions 1.0
Moxa Tn-4900 Series — versions 1.0

Weakness classification (CWE)

CWE-78 — OS Command Injection

References

www.moxa.com/en/support/product-support/security-advisory/mpsa-259491-cve-2025-… (vendor-advisory)