CVE-2026-25601

A vulnerability was identified in MEPIS RM, an industrial software product developed by Metronik. The application contained a hardcoded cryptographic key within the Mx.Web.ComponentModel.dll component. When the option to store domain passwords was enabled, this key was used to encrypt user passwords before storing them in the application’s database. An attacker with sufficient privileges to access the database could extract the encrypted passwords, decrypt them using the embedded key, and gain unauthorized access to the associated ICS/OT environment.

CVSS v3 6.4 MEDIUM

6.4^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 0.5 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://www.cert.si/en/cve-2026-25601/	Broken Link

Configurations

Configuration 1 (hide)

cpe:2.3:a:metronik:mepis_rm:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:a:metronik:mepis_rm::::::::
	cpe:2.3:a:metronik:mepis_rm:8.2.0007:-::::::

History

07 Apr 2026, 20:47

Type	Values Removed	Values Added
CPE		cpe:2.3:a:metronik:mepis_rm:::::::: cpe:2.3:a:metronik:mepis_rm:8.2.0007:-::::::
First Time		Metronik mepis Rm Metronik
References	~~() https://www.cert.si/en/cve-2026-25601/ -~~	() https://www.cert.si/en/cve-2026-25601/ - Broken Link

01 Apr 2026, 12:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-04-01 12:16

Updated : 2026-04-07 20:47

NVD link : CVE-2026-25601

Mitre link : CVE-2026-25601

CVE.ORG link : CVE-2026-25601

JSON object : View

Products Affected

metronik

mepis_rm

CWE

CWE-798

Use of Hard-coded Credentials

{"id": "CVE-2026-25601", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.5}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.7, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 0.8}]}, "published": "2026-04-01T12:16:02.587", "references": [{"url": "https://www.cert.si/en/cve-2026-25601/", "tags": ["Broken Link"], "source": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158", "description": [{"lang": "en", "value": "CWE-798"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability was identified in MEPIS RM, an industrial\nsoftware product developed by Metronik. The application contained a hardcoded\ncryptographic key within the Mx.Web.ComponentModel.dll component. When the\noption to store domain passwords was enabled, this key was used to encrypt user\npasswords before storing them in the application\u2019s database. An attacker with\nsufficient privileges to access the database could extract the encrypted\npasswords, decrypt them using the embedded key, and gain unauthorized access to\nthe associated ICS/OT environment."}], "lastModified": "2026-04-07T20:47:29.027", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:metronik:mepis_rm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F1D97A10-22CB-4C9C-8581-433F771F6958", "versionEndExcluding": "8.2.017"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:metronik:mepis_rm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "641D46CD-B882-4EE3-B5FD-52ED712EF323", "versionEndExcluding": "8.2.0007"}, {"criteria": "cpe:2.3:a:metronik:mepis_rm:8.2.0007:-:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98B6B64E-528D-47F0-B6F8-8FF5859144C0"}], "operator": "OR"}]}], "sourceIdentifier": "a6d3dc9e-0591-4a13-bce7-0f5b31ff6158"}