6 matches found
INEA ME RTU (CVE-2023-29155)
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the root account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system. This plugin only works with Tenable.ot. Please visit...
CVE-2023-29155
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...
CVE-2023-29155
CVE-2023-29155 affects INEA ME RTU firmware versions 3.36b and prior, where authentication to the host’s root account is not required. This could allow an attacker to gain admin-level access to the host system, with a critical impact. The issue is documented in multiple sources (NVD/NASA-style re...
CVE-2023-29155 INEA ME RTU Missing Authentication for Critical Function
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...
CVE-2023-29155 INEA ME RTU Missing Authentication for Critical Function
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...
INEA ME RTU
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.9 ATTENTION : Exploitable remotely/low attack complexity Vendor : INEA Equipment : ME RTU Vulnerabilities : OS Command Injection, Improper Authentication 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow remote code execution...