CVE-2017-5165

Name of the Vulnerable Software and Affected Versions BINOM3 Universal Multifunctional Electric Power Quality Meter (affected versions not specified)

Description The issue is related to the lack of a CSRF Token generated per page and/or per sensitive function, which can allow silent execution of unauthorized actions on the device. This includes potential changes to configuration parameters and saving modified configurations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.