CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2023/11/29 12:0 a.m.•17 views

INEA ME RTU (CVE-2023-29155)

Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the root account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system. This plugin only works with Tenable.ot. Please visit...

9.8CVSS8.2AI score0.00116EPSS

Tenable Nessus•added 2023/11/29 12:0 a.m.•15 views

INEA ME RTU Improper Neutralization of Special Elements Used in an OS Command (CVE-2023-35762)

Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system OS command injection, which could allow remote code execution. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable,...

9.9CVSS8.4AI score0.00429EPSS

OSV•added 2023/11/20 5:15 p.m.•1 views

CVE-2023-29155

Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system...

9.8CVSS5.8AI score0.00116EPSS

NVD•added 2023/11/20 5:15 p.m.•8 views

CVE-2023-29155

9.8CVSS0.00116EPSS

NVD•added 2023/11/20 5:15 p.m.•14 views

CVE-2023-35762

Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system OS command injection, which could allow remote code execution...

9.9CVSS0.00429EPSS

OSV•added 2023/11/20 5:15 p.m.•1 views

CVE-2023-35762

Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system OS command injection, which could allow remote code execution...

9.8CVSS6AI score

Prion•added 2023/11/20 5:15 p.m.•15 views

Command injection

Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system OS command injection, which could allow remote code execution...

7.5CVSS8.2AI score0.00429EPSS

Prion•added 2023/11/20 5:15 p.m.•9 views

Authentication flaw

7.5CVSS7.3AI score0.00116EPSS

Cvelist•added 2023/11/20 4:28 p.m.•13 views

CVE-2023-29155 INEA ME RTU Missing Authentication for Critical Function

9.8CVSS9.7AI score0.00116EPSS

CVE•added 2023/11/20 4:28 p.m.•35 views

CVE-2023-29155

CVE-2023-29155 affects INEA ME RTU firmware versions 3.36b and prior, where authentication to the host’s root account is not required. This could allow an attacker to gain admin-level access to the host system, with a critical impact. The issue is documented in multiple sources (NVD/NASA-style re...

9.8CVSS9.6AI score0.00116EPSS

Vulnrichment•added 2023/11/20 4:28 p.m.•8 views

CVE-2023-29155 INEA ME RTU Missing Authentication for Critical Function

9.8CVSS9.6AI score0.00116EPSS

CVE•added 2023/11/20 4:25 p.m.•36 views

CVE-2023-35762

CVE-2023-35762 affects Mitsubishi Electric INEA ME RTU firmware

9.9CVSS9.8AI score0.00429EPSS

Cvelist•added 2023/11/20 4:25 p.m.•12 views

CVE-2023-35762 OS Command Injection in INEA ME RTU

Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system OS command injection, which could allow remote code execution...

9.9CVSS10AI score0.00429EPSS

Vulnrichment•added 2023/11/20 4:25 p.m.•7 views

CVE-2023-35762 OS Command Injection in INEA ME RTU

Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system OS command injection, which could allow remote code execution...

9.9CVSS7.7AI score0.00429EPSS

CNNVD•added 2023/11/20 12:0 a.m.•1 views

INEA ME RTU Operating System Command Injection Vulnerability

The INEA ME RTU is a remote terminal unit from INEA. It implements the data interface between the remote device and the control center. A security vulnerability exists in INEA ME RTU version 3.36b and earlier, which stems from vulnerability to operating system command injection attacks and may...

9.9CVSS8.4AI score0.00429EPSS

CNNVD•added 2023/11/20 12:0 a.m.•0 views

INEA ME RTU Authorization Issues Vulnerability

The INEA ME RTU is a remote terminal unit from INEA. It implements the data interface between the remote device and the control center. A security vulnerability exists in INEA ME RTU version 3.36b and earlier, which stems from the fact that authentication of the root account on the device's host...

9.8CVSS7.2AI score0.00116EPSS