OTPulse
FeedAboutContact

Exemys RME1

Act Now9.8ICS-CERT ICSA-22-181-01Jun 30, 2022
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary

The Exemys RME1-AI device contains an authentication bypass vulnerability affecting all firmware versions up to and including 2.1.6. An attacker with network access can bypass authentication mechanisms and perform administrative operations on the device. Exemys has classified this product as end-of-life and no longer provides maintenance or patches.

What this means
What could happen
An attacker on the network could gain full administrative control of the RME1 without credentials, allowing them to change configurations, alter setpoints, disable safety controls, or shut down monitored systems.
Who's at risk
Organizations using Exemys RME1-AI devices for monitoring or control of critical infrastructure. This includes water systems, electric utilities, and other facilities using RME1 for SCADA or monitoring functions. The device controls or monitors processes in your plant, making unauthorized administrative access a direct threat to operations.
How it could be exploited
An attacker sends crafted network traffic to the RME1 that bypasses the authentication check. Once authenticated as administrator, they can issue commands to modify device configuration or control settings affecting connected equipment.
Prerequisites
  • Network access to the RME1 device (direct or via remote access)
  • No credentials required
remotely exploitableno authentication requiredlow complexityno patch availableend-of-life product
Exploitability
Low exploit probability (EPSS 0.2%)
Affected products (1)
ProductAffected VersionsFix Status
RME1-AI firmware: All≤ 2.1.6No fix (EOL)
Remediation & Mitigation
0/3
Do now
0/2
HARDENINGRestrict network access to RME1 devices: place behind a firewall, block Internet exposure, and isolate from business networks
HARDENINGIf remote access is required, route all RME1 traffic through a VPN and restrict VPN access to authorized engineering staff only
Schedule — requires maintenance window
0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpgrade to RME2 or newer supported Exemys product line
View full CISA ICS-CERT advisory
↑↓ Navigate · Esc Close
API: /api/v1/advisories/8d2940fd-995a-45f8-a32a-6e13a4f9dba9
Exemys RME1 | CVSS 9.8 - OTPulse