CVE-2025-41710

Summary

An unauthenticated remote attacker may use hardcodes credentials to get access to the previously activated FTP Server with limited read and write privileges.

Affected Software

VendorProductVersion RangeStatus
JanitzaUMG 96RM-E 24V(5222063)0.0 <= 3.13affected
JanitzaUMG 96RM-E 230V(5222062)0.0 <= 3.13affected
WeidmuellerENERGY METER 750-230 (2540910000)0.0 <= 3.13affected
WeidmuellerENERGY METER 750-24 (2540900000)0.0 <= 3.13affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References