Vulnerabilities > Inea > ME RTU Firmware > 3.36
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-20 | CVE-2023-29155 | Improper Authentication vulnerability in Inea ME RTU Firmware 3.36/3.36B Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. | 9.8 |
| 2023-11-20 | CVE-2023-35762 | OS Command Injection vulnerability in Inea ME RTU Firmware 3.36/3.36B Versions of INEA ME RTU firmware 3.36b and prior are vulnerable to operating system (OS) command injection, which could allow remote code execution. | 9.8 |