← back
CVE-2023-2131

CVE-2023-2131

CVSS 10 CRITICALEPSS 1.7%
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 10EPSS 1.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
20 Apr 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
INEA · ME RTU