PT-2017-16360 · Binom · Binom3 Universal Multifunctional Electric Power Quality Meter

Karn Ganeshen

Published

2017-02-13

Updated

2017-06-28

CVE-2017-5167

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions BINOM3 Universal Multifunctional Electric Power Quality Meter (affected versions not specified)

Description The issue concerns the inability of users to change their own passwords, which could lead to security risks if default or weak passwords are used.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Using Hardcoded Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-798

Related Identifiers

CVE-2017-5167

Affected Products

Binom3 Universal Multifunctional Electric Power Quality Meter

PT-2017-16360 · Binom · Binom3 Universal Multifunctional Electric Power Quality Meter

CVE-2017-5167

Weakness Enumeration

Related Identifiers

Affected Products

References · 3