CVE-2017-5162

Published: Feb 13, 2017Modified: May 13, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration.

Affected (1)

Products: Binom3: Universal Multifunctional Electric Power Quality Meter Firmware

Binom3

1 product

Universal Multifunctional Electric Power Quality Meter Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Binom3 Universal Multifunctional Electric Power Quality Meter Firmware	All versions

Running on/with	Platform Versions
Binom3 Universal Multifunctional Electric Power Quality Meter	All versions

Related CWEs

CWE-306

Missing Authentication for Critical Function

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

References (4)

http://www.securityfocus.com/bid/93028

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

https://ics-cert.us-cert.gov/advisories/ICSA-17-031-01A

Source: ics-cert@hq.dhs.gov

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/93028

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://ics-cert.us-cert.gov/advisories/ICSA-17-031-01A

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.