Description
An unauthenticated remote attacker can perform a command injection via Modbus-TCP or Modbus-RTU to gain read and write access on the affected device.
Published: 2026-03-10
Score: 9.8 Critical
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 18 Mar 2026 08:45:00 +0000

Type Values Removed Values Added
Description [PROBLEMTYPE] in [COMPONENT] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT] via [VECTOR] An unauthenticated remote attacker can perform a command injection via Modbus-TCP or Modbus-RTU to gain read and write access on the affected device.

Wed, 11 Mar 2026 12:00:00 +0000

Type Values Removed Values Added
First Time appeared Janitza
Janitza umg 96rm-e 230v(5222062)
Janitza umg 96rm-e 24v(5222063)
Weidmueller
Weidmueller energy Meter 750-230 (2540910000)
Weidmueller energy Meter 750-24 (2540900000)
Vendors & Products Janitza
Janitza umg 96rm-e 230v(5222062)
Janitza umg 96rm-e 24v(5222063)
Weidmueller
Weidmueller energy Meter 750-230 (2540910000)
Weidmueller energy Meter 750-24 (2540900000)

Tue, 10 Mar 2026 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 10 Mar 2026 08:30:00 +0000

Type Values Removed Values Added
Description [PROBLEMTYPE] in [COMPONENT] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT] via [VECTOR]
Title Command injection in power analyzer via Modbus-TCP and Modbus-RTU
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Janitza Umg 96rm-e 230v(5222062) Umg 96rm-e 24v(5222063)
Weidmueller Energy Meter 750-230 (2540910000) Energy Meter 750-24 (2540900000)
cve-icon MITRE

Status: PUBLISHED

Assigner: CERTVDE

Published:

Updated: 2026-03-18T08:16:28.698Z

Reserved: 2025-04-16T11:17:48.311Z

Link: CVE-2025-41709

cve-icon Vulnrichment

Updated: 2026-03-10T15:58:50.798Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-10T18:17:55.980

Modified: 2026-03-18T09:16:01.863

Link: CVE-2025-41709

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-03-11T11:50:33Z

Weaknesses