Back to CVE List

CVE-2025-41712

MEDIUM SEVERITY

CVSS Score & Metrics

Base Score
6.5 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Vulnerability Description

An unauthenticated remote attacker who tricks a user to upload a manipulated HTML file can get access to sensitive information on the device. This is a result of incorrect permission assignment for the web server.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-732
Source
NVD
Vendor
Janitza, Weidmueller
Product
UMG 96RM-E 24V(5222063), UMG 96RM-E 230V(5222062), ENERGY METER 750-230 (2540910000), ENERGY METER 750-24 (2540900000)

External References

Discussion (0)

Add Comment

No comments yet. Be the first!