Unrated severityNVD Advisory· Published Oct 28, 2019· Updated Sep 10, 2024
CVE-2019-14925
CVE-2019-14925
Description
An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A world-readable /usr/smartrtu/init/settings.xml configuration file on the file system allows an attacker to read sensitive configuration settings such as usernames, passwords, and other sensitive RTU data due to insecure permission assignment.
Affected products
2- Mitsubishi Electric Europe B.V./ME-RTUdescription
Patches
Vulnerability mechanics
References
2- www.mogozobo.commitre
- www.mogozobo.commitre
News mentions
0No linked articles in our index yet.