INEA Patches Vulnerability in ME RTU

April 27, 2023

INEA Patches Vulnerability in ME RTU

INEA issued a security advisory regarding OS Command Injection vulnerability in ME RTU (Remote Terminal Unit).

The Critical Vulnerability

  • CVE-2023-2131 (CVSS 3.1: 10, Critical) – OS Command Injection Vulnerability.
    Successful exploit of this vulnerability could allow a threat actor to remotely execute arbitrary code.

Affected Products

  • ME RTU 3.35 and prior.

Mitigation

CYREBRO recommends updating the product to version 3.36 or later.

References: NIST

Sign Up for Updates