VYPR
Unrated severityNVD Advisory· Published Oct 28, 2019· Updated Sep 10, 2024

CVE-2019-14929

CVE-2019-14929

Description

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Stored cleartext passwords could allow an unauthenticated attacker to obtain configured username and password combinations on the RTU due to the weak credentials management on the RTU. An unauthenticated user can obtain the exposed password credentials to gain access to the following services: DDNS service, Mobile Network Provider, and OpenVPN service.

Affected products

2
  • Mitsubishi Electric Europe B.V./ME-RTUdescription
  • Inea/Me Rtullm-fuzzy
    Range: <=2.02

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.