CVE-2026-10825

UNKNOWN 0.0

Improper JSON Input Validation in WebSocket API Leads to Denial of Service

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption and may result in an unexpected device reboot.

CWE	CWE-1287
Vendor	moxa
Product	nport 6000-g2 series
Published	Jun 16, 2026
Last Updated	Jun 16, 2026

Stay Ahead of the Next One

Get instant alerts for moxa nport 6000-g2 series

Be the first to know when new unknown vulnerabilities affecting moxa nport 6000-g2 series are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Moxa / NPort 6000-G2 Series

1.0 ≤ 1.1.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

moxa.com: https://www.moxa.com/en/support/product-support/security-advisory/mpsa-268270-cve-2026-10825-improper-validation-of-input-vulnerability-in-serial-device-servers