Vulnerabilities > Inea

DATE CVE VULNERABILITY TITLE RISK
2023-11-20 CVE-2023-29155 Improper Authentication vulnerability in Inea ME RTU Firmware 3.36/3.36B
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device.
network
low complexity
inea CWE-287
critical
9.8
2023-11-20 CVE-2023-35762 OS Command Injection vulnerability in Inea ME RTU Firmware 3.36/3.36B
Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system (OS) command injection, which could allow remote code execution.
network
low complexity
inea CWE-78
critical
9.8
2023-04-20 CVE-2023-2131 OS Command Injection vulnerability in Inea ME RTU Firmware
Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code.
network
low complexity
inea CWE-78
critical
9.8
2019-10-28 CVE-2019-14931 OS Command Injection vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-78
critical
9.8
2019-10-28 CVE-2019-14930 Use of Hard-coded Credentials vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-798
critical
9.8
2019-10-28 CVE-2019-14929 Insufficiently Protected Credentials vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-522
critical
9.8
2019-10-28 CVE-2019-14928 Cross-site Scripting vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-79
5.4
2019-10-28 CVE-2019-14927 Forced Browsing vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-425
7.5
2019-10-28 CVE-2019-14926 Use of Hard-coded Credentials vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-798
critical
9.8
2019-10-28 CVE-2019-14925 Incorrect Default Permissions vulnerability in multiple products
An issue was discovered on Mitsubishi Electric Europe B.V.
network
low complexity
mitsubishielectric inea CWE-276
6.5