cbcvebase.
CVE-2017-5146
published 2017-02-13

CVE-2017-5146: An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Sensitive information is…

PriorityP357high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EXPLOIT
EPSS
9.32%
94.8th percentile
An issue was discovered in Carlo Gavazzi VMU-C EM prior to firmware Version A11_U05, and VMU-C PV prior to firmware Version A17. Sensitive information is stored in clear-text.

Detection & IOCsextracted from sources · hover to see the quote

pathEWplant.db
  • Unauthenticated HTTP access to the EWplant.db database file on Carlo Gavazzi VMU-C devices is a strong indicator of exploitation of the access control flaw (CVE-2017-5144) which also enables the CVE-2017-5146 cleartext information exposure.
  • Monitor for unauthenticated retrieval of SMTP configuration from Carlo Gavazzi VMU-C devices; older firmware versions expose SMTP config (including cleartext passwords) without any authentication.
  • Scan/brute-force activity against Carlo Gavazzi Energy Meter login portals may precede credential harvesting and cleartext SMTP password extraction.
  • ·CVE-2017-5146 (cleartext sensitive information) affects only VMU-C EM prior to firmware Version A11_U05 and VMU-C PV prior to firmware Version A17; patched versions are not vulnerable.
  • ·A valid, admin-privileged user is normally required to extract the SMTP password, but some older firmware versions expose it without any authentication, widening the attack surface for cleartext credential exposure.

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.