CVE-2023-2131
CVE-2023-2131
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 10EPSS 1.7%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
20 Apr 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Versions of INEA ME RTU firmware prior to 3.36 are vulnerable to OS command injection, which could allow an attacker to remotely execute arbitrary code.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected products
INEA · ME RTU