Lucene search
K

6 matches found

nessus
nessus
added 2023/11/29 12:0 a.m.19 views

INEA ME RTU (CVE-2023-29155)

Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the root account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system. This plugin only works with Tenable.ot. Please visit...

9.8CVSS8.4AI score0.00862EPSS
Exploits0References2
nvd
nvd
added 2023/11/20 5:15 p.m.24 views

CVE-2023-29155

Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...

9.8CVSS0.00862EPSS
Exploits0References1
cve
cve
added 2023/11/20 4:28 p.m.45 views

CVE-2023-29155

CVE-2023-29155 affects INEA ME RTU firmware versions 3.36b and prior, where authentication to the host’s root account is not required. This could allow an attacker to gain admin-level access to the host system, with a critical impact. The issue is documented in multiple sources (NVD/NASA-style re...

9.8CVSS9.6AI score0.00862EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2023/11/20 4:28 p.m.10 views

CVE-2023-29155 INEA ME RTU Missing Authentication for Critical Function

Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...

9.8CVSS9.6AI score0.00862EPSS
Exploits0References1
cvelist
cvelist
added 2023/11/20 4:28 p.m.25 views

CVE-2023-29155 INEA ME RTU Missing Authentication for Critical Function

Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...

9.8CVSS9.7AI score0.00862EPSS
Exploits0References1
ics
ics
added 2023/10/31 6:0 a.m.45 views

INEA ME RTU

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 9.9 ATTENTION : Exploitable remotely/low attack complexity Vendor : INEA Equipment : ME RTU Vulnerabilities : OS Command Injection, Improper Authentication 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow remote code execution...

9.9CVSS10AI score0.01698EPSS
Exploits0References8
Rows per page
Query Builder