Vulnerabilities > Inea

DATE CVE VULNERABILITY TITLE RISK
2023-11-20 CVE-2023-29155 Improper Authentication vulnerability in Inea ME RTU Firmware 3.36
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device.
network
low complexity
inea CWE-287
critical
 9.8
9.8
2023-11-20 CVE-2023-35762 OS Command Injection vulnerability in Inea ME RTU Firmware 3.36
Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system (OS) command injection, which could allow remote code execution.
network
low complexity
inea CWE-78
critical
 9.8
9.8
2023-04-20 CVE-2023-2131 OS Command Injection vulnerability in Inea ME RTU Firmware
Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code.
network
low complexity
inea CWE-78
critical
 9.8
9.8
2019-10-28 CVE-2019-14931 OS Command Injection vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0.
network
low complexity
mitsubishielectric inea CWE-78
critical
 10.0
10
2019-10-28 CVE-2019-14930 Use of Hard-coded Credentials vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0.
network
low complexity
mitsubishielectric inea CWE-798
critical
 10.0
10
2019-10-28 CVE-2019-14929 Insufficiently Protected Credentials vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0.
network
low complexity
mitsubishielectric inea CWE-522
5.0
5.0
2019-10-28 CVE-2019-14928 Cross-site Scripting vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. 		3.5
3.5
2019-10-28 CVE-2019-14927 Information Exposure vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0.
network
low complexity
mitsubishielectric inea CWE-200
5.0
5.0
2019-10-28 CVE-2019-14926 Use of Hard-coded Credentials vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0.
network
low complexity
mitsubishielectric inea CWE-798
7.5
7.5
2019-10-28 CVE-2019-14925 Incorrect Default Permissions vulnerability in multiple products
An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0.
network
low complexity
mitsubishielectric inea CWE-276
4.0
4.0