Remote Password Extraction Vulnerability in Janitza and Weidmüller Firmware
CVE-2025-41711

5.3MEDIUM

Key Information:

Vendor

Janitza

Status
Umg 96rm-e 24v(5222063)
Umg 96rm-e 230v(5222062)
Energy Meter 750-230 (2540910000)
Energy Meter 750-24 (2540900000)
Vendor
CVE Published:
10 March 2026

What is CVE-2025-41711?

A malicious, unauthenticated remote attacker can exploit this vulnerability within the firmware of certain Janitza and Weidmüller products. The attacker can utilize access to firmware images to extract password hashes, enabling them to brute-force these hashes and potentially reveal plaintext passwords associated with accounts that possess limited access privileges. This could pose a serious security risk, allowing unauthorized users to gain access to sensitive systems and data.

Affected Version(s)

ENERGY METER 750-230 (2540910000) 0.0 <= 3.13

ENERGY METER 750-24 (2540900000) 0.0 <= 3.13

UMG 96RM-E 230V(5222062) 0.0 <= 3.13

References

https://certvde.com/en/advisories/VDE-2025-079/
vendor-advisory
https://certvde.com/en/advisories/VDE-2025-096/
vendor-advisory
https://janitza.csaf-tp.certvde.com/.well-known/csaf/whit...
vendor-advisory

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Deutsche Telekom Security (DT Security)
.