CVE Catalog

CVE-2026-11848

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.04%

14th percentile — higher than 14% of all known CVEs

Summary

The iRM-IEI Remote Management developed by IEI Integration Corp has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to exploit a specific functionality to obtain partial system configuration information.

Risk Assessment

This vulnerability may lead to the disclosure of sensitive system configuration information, increasing the risk of further attacks on the organization's infrastructure.

Recommendation

It is recommended to implement authentication mechanisms in iRM-IEI Remote Management and to regularly monitor access to the system.

Original NVD description (English source)

The iRM-IEI Remote Management developed by IEI Integration Corp has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to exploit a specific functionality to obtain partial system configuration information.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS