Vulnerabilities

CVE-2026-0715 - Moxa Arm-based Industrial Computers Bootloader Access Vulnerability

2026-02-05 0 views admin

CVE ID : CVE-2026-0715 Published : Feb. 5, 2026, 5:16 p.m. | 57 minutes ago Description : Moxa Arm-based industrial computers running Moxa Industrial Linux Secure use a device-unique bootloader password provided on the device. An attacker with physical access to the device could use this information to access the bootloader menu via a serial interface. Access to the bootloader menu does not allow full system takeover or privilege escalation. The bootloader enforces digital signature verification and only permits flashing of Moxa-signed images. As a result, an attacker cannot install malicious firmware or execute arbitrary code. The primary impact is limited to a potential temporary denial-of-service condition if a valid image is reflashed. Remote exploitation is not possible. Severity: 7.0 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2026-0715

Severity

HIGH

Published

Feb. 5, 2026

Affected Product: Linux

Attack Vector: physical

Impact: privilege escalation

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-0715highlinux

CVE-2026-0715 - Moxa Arm-based Industrial Computers Bootloader Access Vulnerability

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2020-37209 - SpotFTP FTP Password Recovery 3.0.0.0 - 'Name' Denial of Service

CVE-2020-37211 - SpotIM 2.2 - 'Name' Denial Of Service

CVE-2020-37210 - SpotIE 2.9.5 - 'Key' Denial of Service

CVE-2020-37212 - SpotMSN 2.4.6 - 'Name' Denial of Service

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting