Lucene search

K

Universal Multifunctional Electric Power Quality Meter Firmware Security Vulnerabilities

cve
cve

CVE-2017-5162

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration.

9.8CVSS

9.5AI Score

0.011EPSS

2017-02-13 09:59 PM
34
cve
cve

CVE-2017-5164

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Input sent from a malicious client is not properly verified by the server. An attacker can execute arbitrary script code in another user's browser session (CROSS-SITE SCRIPTING).

6.1CVSS

7.1AI Score

0.001EPSS

2017-02-13 09:59 PM
24
cve
cve

CVE-2017-5165

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. There is no CSRF Token generated per page and/or per (sensitive) function. Successful exploitation of this vulnerability can allow silent execution of unauthorized actions on the device such as configuration p...

7.6CVSS

8.1AI Score

0.001EPSS

2017-02-13 09:59 PM
24
cve
cve

CVE-2017-5166

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. An INFORMATION EXPOSURE flaw can be used to gain privileged access to the device.

9.8CVSS

9.4AI Score

0.002EPSS

2017-02-13 09:59 PM
24
cve
cve

CVE-2017-5167

An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Users do not have any option to change their own passwords.

8.6CVSS

8.9AI Score

0.001EPSS

2017-02-13 09:59 PM
30