Vulnerability in Moxa Edf-g1002-bp Series

CVE-2025-6893

An Execution with Unnecessary Privileges vulnerability has been identified in Moxa’s network security appliances and routers. A flaw in broken access control has been identified in the /api/v1/setting/data endpoint of the affected device…

EPSS: 0.001 (30.8th percentile) — read the EPSS interpretation.

Affected products

Moxa Edf-g1002-bp Series — versions 1.0, 3.21
Moxa Edr-8010 Series — versions 1.0, 3.21
Moxa Edr-g9010 Series — versions 1.0, 3.21
Moxa Nat-102 Series — versions 1.0, 3.21
Moxa Nat-108 Series — versions 1.0, 3.21
Moxa Oncell G4302-lte4 Series — versions 1.0, 3.21.0
Moxa Tn-4900 Series — versions 1.0, 3.21

Weakness classification (CWE)

CWE-250

References

www.moxa.com/en/support/product-support/security-advisory/mpsa-258121-cve-2025-… (vendor-advisory)