Primary

Context

RISS SRL MOMA Seismic Station Missing Authentication Vulnerability Allowing Unauthenticated Access to Web Management Interface

Vulnerability

A vulnerability exists in RISS SRL MOMA Seismic Station versions through 2.4.2520, where the web management interface is exposed without authentication. This flaw could enable an unauthenticated attacker to modify configuration settings, access device data, or remotely reset the device. Successful exploitation may also lead to a denial-of-service condition.

Impact

Exploitation of this vulnerability could result in unauthorized modification of device settings, unauthorized access to device data, or unauthorized remote resets of the device.

Remediation

RISS SRL did not respond to CISA's request for coordination. Users of RISS MOMA Seismic Station are encouraged to contact RISS SRL for more information.

Added: Feb 3, 2026, 11:23 PM

Updated: Feb 3, 2026, 11:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.0

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

7.0

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

RISS SRL MOMA Seismic Station Missing Authentication Vulnerability Allowing Unauthenticated Access to Web Management Interface

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating