Lucene search
HistoryApr 20, 2023 - 9:15 p.m.
CVE-2023-2131
cve-2023-2131
inea me rtu
firmware
os
command injection
vulnerability
nvd
10 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
62.1%
Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code.
Affected configurations
Node
ineame_rtuMatch-
ineame_rtu_firmwareRange<3.36
| CPE | Name | Operator | Version |
|---|---|---|---|
| inea:me_rtu_firmware | inea me rtu firmware | lt | 3.36 |
CNA Affected
[
{
"vendor": "INEA",
"product": "ME RTU",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "3.36",
"versionType": "custom"
}
]
}
]Related
nessus
nessus
cvelist
cvelist
CVE-2023-2131 CVE-2023-2131
2023-04-20 20:40:57
nvd
nvd
CVE-2023-2131
2023-04-20 21:15:08
ics
ics
INEA ME RTU
2023-04-20 12:00:00
thn
thn
CISA Issues Advisory on Critical RCE Affecting ME RTU Remote Terminal Units
2023-05-03 05:07:00
prion
prion
Command injection
2023-04-20 21:15:00
10 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
9.7 High
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
62.1%
Related for CVE-2023-2131