CVE-2026-11848
MediumCVSS 5.3Exploitation Probability (EPSS)
Low risk14th percentile — higher than 14% of all known CVEs
Summary
The iRM-IEI Remote Management developed by IEI Integration Corp has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to exploit a specific functionality to obtain partial system configuration information.
Risk Assessment
This vulnerability may lead to the disclosure of sensitive system configuration information, increasing the risk of further attacks on the organization's infrastructure.
Recommendation
It is recommended to implement authentication mechanisms in iRM-IEI Remote Management and to regularly monitor access to the system.
Original NVD description (English source)
The iRM-IEI Remote Management developed by IEI Integration Corp has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to exploit a specific functionality to obtain partial system configuration information.

