CVE-2025-41709 Command injection in power analyzer via Modbus-TCP and Modbus-RTU

🗓️ 10 Mar 2026 08:26:14Reported by CERTVDEType

CVE-2025-41709 enables command injection in power analyzer via Modbus-TCP and Modbus-RTU.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2025-41709	10 Mar 202608:26	–	attackerkb
Circl	CVE-2025-41709	10 Mar 202607:23	–	circl
CNNVD	Janitza UMG 96RM-E 24V和Janitza UMG 96RM-E 230V 操作系统命令注入漏洞	10 Mar 202600:00	–	cnnvd
CVE	CVE-2025-41709	10 Mar 202608:26	–	cve
EUVD	EUVD-2025-208465	10 Mar 202618:31	–	euvd
EUVD	EUVD-2025-208466	10 Mar 202618:31	–	euvd
NVD	CVE-2025-41709	10 Mar 202618:17	–	nvd
Positive Technologies	PT-2026-24183	10 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2025-41709	11 Mar 202613:19	–	redhatcve
Vulnrichment	CVE-2025-41709 Command injection in power analyzer via Modbus-TCP and Modbus-RTU	10 Mar 202608:26	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "UMG 96RM-E 24V(5222063)",
    "vendor": "Janitza",
    "versions": [
      {
        "lessThanOrEqual": "3.13",
        "status": "affected",
        "version": "0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "UMG 96RM-E 230V(5222062)",
    "vendor": "Janitza",
    "versions": [
      {
        "lessThanOrEqual": "3.13",
        "status": "affected",
        "version": "0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ENERGY METER 750-230 (2540910000)",
    "vendor": "Weidmueller",
    "versions": [
      {
        "lessThanOrEqual": "3.13",
        "status": "affected",
        "version": "0.0",
        "versionType": "custom"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "ENERGY METER 750-24 (2540900000)",
    "vendor": "Weidmueller",
    "versions": [
      {
        "lessThanOrEqual": "3.13",
        "status": "affected",
        "version": "0.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
certvde	www.certvde.com/en/advisories/VDE-2025-079/
certvde	www.certvde.com/en/advisories/VDE-2025-096/
weidmueller	www.weidmueller.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2025-096.json
janitza	www.janitza.csaf-tp.certvde.com/.well-known/csaf/white/2026/vde-2025-079.json

18 Mar 2026 08:16Current

CVSS 3.19.8

EPSS0.0058

CWE-78