Vulnerability in Janitza's Electrical Monitoring System Products
CVE-2025-41709

9.8CRITICAL

Key Information:

Vendor: Janitza
Status: Umg 96rm-e 24v(5222063); Umg 96rm-e 230v(5222062); Energy Meter 750-230 (2540910000); Energy Meter 750-24 (2540900000)
Vendor: CVE Published:; 10 March 2026

🔔 Create Janitza Vulnerability Alert

What is CVE-2025-41709?

A security misconfiguration in Janitza's electrical monitoring system products allows unauthorized users to gain access to sensitive data through insufficiently protected interfaces. This vulnerability emphasizes the importance of proper configuration and access control to prevent potential exploitation and ensure device security.

Affected Version(s)

ENERGY METER 750-230 (2540910000) 0.0 <= 3.13

ENERGY METER 750-24 (2540900000) 0.0 <= 3.13

UMG 96RM-E 230V(5222062) 0.0 <= 3.13

References

https://certvde.com/en/advisories/VDE-2025-079/

vendor-advisory

https://certvde.com/en/advisories/VDE-2025-096/

vendor-advisory

https://janitza.csaf-tp.certvde.com/.well-known/csaf/whit...

vendor-advisory

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 10, 2026
Vulnerability Reserved
Apr 16, 2025

Credit

Deutsche Telekom Security (DT Security)

CVE-2025-41709 Data

.