CVE-2025-41733 | Metz Connect Energy-Controlling EWIO2-M up to 2.1.x POST Request authentication bypass (VDE-2025-097)

A vulnerability, which was classified as very critical, has been found in Metz Connect Energy-Controlling EWIO2-M, Energy-Controlling EWIO2-M-BM and Ethernet-IO EWIO2-BM up to 2.1.x. This impacts an unknown function of the component POST Request Handler. Performing manipulation results in authentication bypass by primary weakness.

This vulnerability is identified as CVE-2025-41733. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More