RedLion Controls VT-IPm2m-113-D Firmware 4.9.114

Submit a proposal Propose CVE/GCVE/GHSA reference

Approved changes feed: RSS · Atom

cpe:2.3:o:redlioncontrols:vt-ipm2m-113-d_firmware:4.9.114:*:*:*:*:*:*:*

part: o version: 4.9.114 update: *

VendorRedlioncontrols (6653c7c6-d2d4-51a6-a5b6-36cac6fffa6f)
ProductVt Ipm2M 113 D Firmware (5cd1a748-e9cb-5cf8-81e8-8a8506039e39)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-42770 vulnerable 2026-06-08 06:11:09.216992 Red Lion Controls Sixnet RTU Authentication Bypass Using An Alternative Path Or Channel
CRITICAL (10)
Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message is received over TCP/IP the RTU will simply accept the message with no authentication challenge.
Published: 2023-11-21T00:14:18.734Z
Updated: 2025-06-11T14:03:28.764Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-40151 vulnerable 2026-06-08 06:09:41.317745 Red Lion Controls Sixnet RTU Exposed Dangerous Method Or Function
CRITICAL (10)
When user authentication is not enabled the shell can execute commands with the highest privileges. Red Lion SixTRAK and VersaTRAK Series RTUs with authenticated users enabled (UDR-A) any Sixnet UDR message will meet an authentication challenge over UDP/IP. When the same message comes over TCP/IP the RTU will simply accept the message with no authentication challenge.
Published: 2023-11-21T00:11:10.081Z
Updated: 2026-02-25T17:20:08.510Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.