cbcvebase.
CVE-2023-29155
published 2023-11-20

CVE-2023-29155: Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an…

PriorityP263critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.86%
54.0th percentile
Versions of INEA ME RTU firmware 3.36b and prior do not require authentication to the "root" account on the host system of the device. This could allow an attacker to obtain admin-level access to the host system.

Affected

2 ranges
VendorProductVersion rangeFixed in
ineame_rtu<= 3.36b
ineame_rtu_firmware< 3.373.37

Detection & IOCsextracted from sources · hover to see the quote

  • Target device: INEA ME RTU firmware versions 3.36b and prior expose the 'root' account on the host system without requiring authentication, allowing unauthenticated remote admin-level access.
  • CVE-2023-29155 is network-exploitable with no privileges required and no user interaction (AV:N/AC:L/PR:N/UI:N); any unauthenticated network connection attempt to the root account on INEA ME RTU should be treated as suspicious.
  • A companion vulnerability CVE-2023-35762 (OS Command Injection, CVSS 9.9) affects the same INEA ME RTU firmware ≤3.36b and enables remote code execution; detections for both should be deployed together.
  • Critical infrastructure sectors (Energy, Water and Wastewater, Transportation) running INEA ME RTU devices worldwide are the primary target population; prioritize detection coverage in OT/ICS network segments for these sectors.
  • ·No known public exploitation has been reported at time of advisory publication; threat landscape may change.
  • ·Firmware version 3.37 patches CVE-2023-29155; devices still running ≤3.36b remain fully exposed. Verify firmware version on all deployed INEA ME RTU units before assuming patched status.
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.