{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-5191", "assignerOrgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa", "state": "PUBLISHED", "assignerShortName": "Moxa", "dateReserved": "2025-05-26T05:18:48.345Z", "datePublished": "2025-08-25T08:01:11.035Z", "dateUpdated": "2025-08-25T13:48:09.418Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Windows 10 IoT Enterprise LTSC 2021"], "product": "Utility for DRP-A100 Series", "vendor": "Moxa", "versions": [{"lessThanOrEqual": "1.1", "status": "affected", "version": "1.0", "versionType": "custom"}, {"status": "unaffected", "version": "1.2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "platforms": ["Windows 11 IoT Enterprise LTSC 2024", "Windows 11 Professional 2022"], "product": "Utility for DRP-A100 Series", "vendor": "Moxa", "versions": [{"status": "affected", "version": "1.0", "versionType": "custom"}, {"status": "unaffected", "version": "1.1", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "platforms": ["Windows 10 IoT Enterprise LTSC 2021"], "product": "Utility for DRP-C100 Series", "vendor": "Moxa", "versions": [{"lessThanOrEqual": "1.1", "status": "affected", "version": "1.0", "versionType": "custom"}, {"status": "unaffected", "version": "1.2", "versionType": "custom"}]}, {"defaultStatus": "unaffected", "platforms": ["Windows 11 IoT Enterprise LTSC 2024", "Windows 11 Professional 2022"], "product": "Utility for DRP-C100 Series", "vendor": "Moxa", "versions": [{"status": "affected", "version": "1.0", "versionType": "custom"}, {"status": "unaffected", "version": "1.1", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Anni Tuulinen"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An Unquoted Search Path vulnerability has been identified in the utility for Moxa\u2019s industrial computers (Windows). </span><span style=\"background-color: rgb(255, 255, 255);\">Due to the unquoted path configuration in </span><span style=\"background-color: rgb(255, 255, 255);\">the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority directory within the search path. When the Serial Interface service starts, the malicious executable could be run with SYSTEM privileges. Successful exploitation could allow privilege escalation or enable an attacker to maintain persistence on the affected system. </span><span style=\"background-color: rgb(255, 255, 255);\">While successful exploitation can severely impact the confidentiality, integrity, and availability of the affected device itself, there is no loss of </span><span style=\"background-color: rgb(255, 255, 255);\">confidentiality, integrity, or availability within any subsequent systems.</span><br>"}], "value": "An Unquoted Search Path vulnerability has been identified in the utility for Moxa\u2019s industrial computers (Windows). Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority directory within the search path. When the Serial Interface service starts, the malicious executable could be run with SYSTEM privileges. Successful exploitation could allow privilege escalation or enable an attacker to maintain persistence on the affected system. While successful exploitation can severely impact the confidentiality, integrity, and availability of the affected device itself, there is no loss of confidentiality, integrity, or availability within any subsequent systems."}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233: Privilege Escalation"}]}], "metrics": [{"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "LOCAL", "baseScore": 7.3, "baseSeverity": "HIGH", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-428", "description": "CWE-428: Unquoted Search Path or Element", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa", "shortName": "Moxa", "dateUpdated": "2025-08-25T08:22:05.944Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Moxa has developed appropriate solutions to address this vulnerability. The solutions for the affected products are listed in the security advisory: </p><p><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)\">https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)</a></p>"}], "value": "Moxa has developed appropriate solutions to address this vulnerability. The solutions for the affected products are listed in the security advisory: \n\n https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)"}], "source": {"discovery": "EXTERNAL"}, "title": "Unquoted Search Path Vulnerability in the Utility for Industrial Computers (Windows)", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-08-25T13:48:00.832287Z", "id": "CVE-2025-5191", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-25T13:48:09.418Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-5191", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2025-08-25T13:48:00.832287Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-08-25T13:48:05.859Z"}}], "cna": {"title": "Unquoted Search Path Vulnerability in the Utility for Industrial Computers (Windows)", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Anni Tuulinen"}], "impacts": [{"capecId": "CAPEC-233", "descriptions": [{"lang": "en", "value": "CAPEC-233: Privilege Escalation"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 7.3, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "HIGH", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Moxa", "product": "Utility for DRP-A100 Series", "versions": [{"status": "affected", "version": "1.0", "versionType": "custom", "lessThanOrEqual": "1.1"}, {"status": "unaffected", "version": "1.2", "versionType": "custom"}], "platforms": ["Windows 10 IoT Enterprise LTSC 2021"], "defaultStatus": "unaffected"}, {"vendor": "Moxa", "product": "Utility for DRP-A100 Series", "versions": [{"status": "affected", "version": "1.0", "versionType": "custom"}, {"status": "unaffected", "version": "1.1", "versionType": "custom"}], "platforms": ["Windows 11 IoT Enterprise LTSC 2024", "Windows 11 Professional 2022"], "defaultStatus": "unaffected"}, {"vendor": "Moxa", "product": "Utility for DRP-C100 Series", "versions": [{"status": "affected", "version": "1.0", "versionType": "custom", "lessThanOrEqual": "1.1"}, {"status": "unaffected", "version": "1.2", "versionType": "custom"}], "platforms": ["Windows 10 IoT Enterprise LTSC 2021"], "defaultStatus": "unaffected"}, {"vendor": "Moxa", "product": "Utility for DRP-C100 Series", "versions": [{"status": "affected", "version": "1.0", "versionType": "custom"}, {"status": "unaffected", "version": "1.1", "versionType": "custom"}], "platforms": ["Windows 11 IoT Enterprise LTSC 2024", "Windows 11 Professional 2022"], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Moxa has developed appropriate solutions to address this vulnerability. The solutions for the affected products are listed in the security advisory: \n\n https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)", "supportingMedia": [{"type": "text/html", "value": "<p>Moxa has developed appropriate solutions to address this vulnerability. The solutions for the affected products are listed in the security advisory: </p><p><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)\">https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)</a></p>", "base64": false}]}], "references": [{"url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)", "tags": ["vendor-advisory"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "An Unquoted Search Path vulnerability has been identified in the utility for Moxa\u2019s industrial computers (Windows). Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority directory within the search path. When the Serial Interface service starts, the malicious executable could be run with SYSTEM privileges. Successful exploitation could allow privilege escalation or enable an attacker to maintain persistence on the affected system. While successful exploitation can severely impact the confidentiality, integrity, and availability of the affected device itself, there is no loss of confidentiality, integrity, or availability within any subsequent systems.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An Unquoted Search Path vulnerability has been identified in the utility for Moxa\u2019s industrial computers (Windows). </span><span style=\"background-color: rgb(255, 255, 255);\">Due to the unquoted path configuration in </span><span style=\"background-color: rgb(255, 255, 255);\">the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority directory within the search path. When the Serial Interface service starts, the malicious executable could be run with SYSTEM privileges. Successful exploitation could allow privilege escalation or enable an attacker to maintain persistence on the affected system. </span><span style=\"background-color: rgb(255, 255, 255);\">While successful exploitation can severely impact the confidentiality, integrity, and availability of the affected device itself, there is no loss of </span><span style=\"background-color: rgb(255, 255, 255);\">confidentiality, integrity, or availability within any subsequent systems.</span><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-428", "description": "CWE-428: Unquoted Search Path or Element"}]}], "providerMetadata": {"orgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa", "shortName": "Moxa", "dateUpdated": "2025-08-25T08:22:05.944Z"}}}, "cveMetadata": {"cveId": "CVE-2025-5191", "state": "PUBLISHED", "dateUpdated": "2025-08-25T13:48:09.418Z", "dateReserved": "2025-05-26T05:18:48.345Z", "assignerOrgId": "2e0a0ee2-d866-482a-9f5e-ac03d156dbaa", "datePublished": "2025-08-25T08:01:11.035Z", "assignerShortName": "Moxa"}, "dataVersion": "5.1"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "An Unquoted Search Path vulnerability has been identified in the utility for Moxa\u2019s industrial computers (Windows). Due to the unquoted path configuration in the SerialInterfaceService.exe utility, a local attacker with limited privileges could place a malicious executable in a higher-priority directory within the search path. When the Serial Interface service starts, the malicious executable could be run with SYSTEM privileges. Successful exploitation could allow privilege escalation or enable an attacker to maintain persistence on the affected system. While successful exploitation can severely impact the confidentiality, integrity, and availability of the affected device itself, there is no loss of confidentiality, integrity, or availability within any subsequent systems."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad de ruta de b\u00fasqueda sin comillas en la utilidad para ordenadores industriales de Moxa (Windows). Debido a la configuraci\u00f3n de la ruta sin comillas en la utilidad SerialInterfaceService.exe, un atacante local con privilegios limitados podr\u00eda colocar un ejecutable malicioso en un directorio de mayor prioridad dentro de la ruta de b\u00fasqueda. Al iniciarse el servicio de interfaz serie, el ejecutable malicioso podr\u00eda ejecutarse con privilegios de SYSTEM. Una explotaci\u00f3n exitosa podr\u00eda permitir la escalada de privilegios o permitir que un atacante mantenga la persistencia en el sistema afectado. Si bien una explotaci\u00f3n exitosa puede afectar gravemente la confidencialidad, integridad y disponibilidad del dispositivo afectado, no se produce p\u00e9rdida de confidencialidad, integridad ni disponibilidad en los sistemas posteriores."}], "id": "CVE-2025-5191", "lastModified": "2025-08-25T20:24:45.327", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "PRESENT", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "psirt@moxa.com", "type": "Secondary"}]}, "published": "2025-08-25T08:15:30.047", "references": [{"source": "psirt@moxa.com", "url": "https://www.moxa.com/en/support/product-support/security-advisory/mpsa-256421-cve-2025-5191-unquoted-search-path-vulnerability-in-the-utility-for-industrial-computers-(windows)"}], "sourceIdentifier": "psirt@moxa.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-428"}], "source": "psirt@moxa.com", "type": "Secondary"}]}

{}