2 matches found
Mitsubishi Electric Europe B.V. smartRTU and INEA ME-RTU Incorrect Default Permissions (CVE-2019-14925)
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A world- readable /usr/smartrtu/init/settings.xml configuration file on the file system allows an attacker to read sensitive configuration settings such as usernames, passwords, and oth...
CVE-2019-14925
CVE-2019-14925 affects Mitsubishi Electric Europe B.V. ME-RTU devices up to v2.02 and INEA ME-RTU devices up to v3.0. The issue is insecure world-readable permissions on /usr/smartrtu/init/settings.xml, allowing access to sensitive configuration data (e.g., usernames and passwords). Public disclo...