CVE-2025-41712
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.5 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Description
An unauthenticated remote attacker who tricks a user to upload a manipulated HTML file can get access to sensitive information on the device. This is a result of incorrect permission assignment for the web server.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-732
Source
NVD
Vendor
Janitza, Weidmueller
Product
UMG 96RM-E 24V(5222063), UMG 96RM-E 230V(5222062), ENERGY METER 750-230 (2540910000), ENERGY METER 750-24 (2540900000)
Discussion (0)
Add Comment
No comments yet. Be the first!