← back
CVE-2017-5165

CVE-2017-5165

EPSS 0.7%
An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. There is no CSRF Token generated per page and/or per (sensitive) function. Successful exploitation of this vulnerability can allow silent execution of unauthorized actions on the device such as configuration parameter changes, and saving modified configuration.
Affected products
n/a · BINOM3 Electric Power Quality Meter

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-17-031-01Ahttp://www.securityfocus.com/bid/93028