CVE-2017-5165
13.02.2017, 21:59
An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. There is no CSRF Token generated per page and/or per (sensitive) function. Successful exploitation of this vulnerability can allow silent execution of unauthorized actions on the device such as configuration parameter changes, and saving modified configuration.
Vendor | Product | Version |
---|---|---|
binom3 | universal_multifunctional_electric_power_quality_meter_firmware | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration