Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2023-11-20T16:28:20.585Z
Updated: 2024-09-04T18:57:27.484Z
Reserved: 2023-06-26T18:46:05.835Z
Link: CVE-2023-29155
Vulnrichment
Updated: 2024-08-02T14:00:15.822Z
NVD
Status : Analyzed
Published: 2023-11-20T17:15:13.143
Modified: 2023-11-29T20:52:57.780
Link: CVE-2023-29155
Redhat
No data.