Critical RCE Vulnerabilities Uncovered in Janitza and Weidmueller Energy Meters
Ddos 
Energy management systems are under the microscope following a security advisory from CERT@VDE, which reveals multiple critical vulnerabilities in Janitza and Weidmueller devices. These flaws, if exploited in combination, allow an unauthenticated remote attacker to gain full system access and achieve remote code execution (RCE).
The affected hardware includes the Janitza UMG 96RM-E and Weidmueller Energy Meters (750-24 and 750-230) running firmware versions 3.13 or lower.
Researchers identified several distinct vulnerabilities that provide attackers with multiple entry points into the devices:
- Command Injection (CVE-2025-41709): Carrying a near-maximum CVSS score of 9.8, this is the most severe flaw in the report. An attacker can use Modbus-TCP or Modbus-RTU to perform command injection, gaining both read and write access to the device.
- Hardcoded Credentials (CVE-2025-41710): Attackers can exploit hardcoded credentials to access an activated FTP server. While this provides limited read and write privileges, it serves as a dangerous stepping stone for further exploitation.
- Sensitive Info Leak (CVE-2025-41712): Due to incorrect permission assignments on the web server, an attacker who tricks a user into uploading a manipulated HTML file can gain access to sensitive device information.
- Password Hash Extraction (CVE-2025-41711): Attackers can use firmware images to extract password hashes, allowing them to brute-force plaintext passwords for accounts that otherwise have limited access.
The combination of these vulnerabilities represents a total compromise of the affected energy meters. Because these devices are often central to monitoring industrial power quality and consumption, an RCE exploit could allow an attacker to disrupt operations or pivot deeper into a corporate network.
The advisory is clear: update immediately. All identified vulnerabilities have been fixed in firmware version 3.14. Administrators are strongly advised to transition to this version to secure their infrastructure against these remote threats.
Support Our Threat Intelligence
If you find our CVE report and cybersecurity news helpful, consider supporting our work.
Buy Me a Coffee
PayPal
