CVE-2017-5162

EUVD-2017-14271
An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 98%
Affected Products (NVD)
VendorProductVersion
binom3universal_multifunctional_electric_power_quality_meter_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/93028
https://ics-cert.us-cert.gov/advisories/ICSA-17-031-01A
http://www.securityfocus.com/bid/93028
https://ics-cert.us-cert.gov/advisories/ICSA-17-031-01A