CVE-2017-5162
published 2017-02-13CVE-2017-5162: An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application…
PriorityP267critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EXPLOIT
EPSS
12.61%
95.7th percentile
An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration.
Detection & IOCsextracted from sources · hover to see the quote
- →Scan for unauthenticated access to BINOM3 web management login portal; the device exposes configuration and password file download endpoints accessible without authentication. ↗
- →Alert on successful login attempts using known default credentials (root/root, admin/1, alg/1, user/1) against BINOM3 HTTP management interfaces. ↗
- →Monitor for HTTP requests attempting to download configuration and password files from BINOM3 devices, particularly by non-root users accessing configuration files and root users accessing password files. ↗
- →CVE-2017-5162 scores CVSS v3 10.0 (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H) — network-reachable BINOM3 devices should be treated as fully compromised if exposed to untrusted networks. ↗
- ·No vendor-supplied patch exists for this vulnerability; BINOM3 had not created mitigations at time of advisory publication. Defensive measures are purely network-level. ↗
- ·Users cannot change their own passwords on affected devices (CVE-2017-5167, hard-coded passwords CWE-259), meaning default credential blocking at the network perimeter is the only viable control. ↗
- ·The Metasploit module covers credential scanning AND config/password file exfiltration in a single auxiliary module; defenders should expect both authentication probing and immediate data harvesting in a single attack session. ↗
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat5.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
S/MIME: CBC gadget attacks allows to exfiltrate plaintext out of encrypted emails
vendor_redhat·2018-05-14·CVSS 5.9
CVE-2017-17689 [MEDIUM] CWE-200 S/MIME: CBC gadget attacks allows to exfiltrate plaintext out of encrypted emails
S/MIME: CBC gadget attacks allows to exfiltrate plaintext out of encrypted emails
The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL.
Statement: The research paper talks about use of HTML as a back channel to create an oracle for modified encrypted emails. HTML emails which use external links like "" can cause security issues if they are honored by the MUAs. Due to flaws in MIME parsers many MUAs seem to concatenate decrypted HTML mine parts which makes it easy to plan such snippets in HTML emails. Please refer to https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060315.html about how GnuPG can mitigate this flaw.
For Thunderbird, this vulnerability was known as CVE-2018-5162 and reso
CISA ICS
BINOM3 Electric Power Quality Meter (Update A)
cisa_ics·2017-01-31
BINOM3 Electric Power Quality Meter (Update A)
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
BINOM3 Electric Power Quality Meter (Update A)
Last RevisedFebruary 07, 2017
Alert CodeICSA-17-031-01A
## CVSS v3 10
ATTENTION: Remotely exploitable/low skill level to exploit
Vendor: BINOM3
Equipment: Electric Power Quality Meter
Vulnerabilities: Cross-site scripting, access control issues, cross-site request forgery (CSRF), sensitive information stored in clear-text, and weak credentials management.
## UPDATED INFORMATION
This updated advisory is a follow-up to the original advisory titled ICSA-17-031-01 BINOM3 Electric Power Quality Meter that was published January 31, 2
GHSA
GHSA-pp9f-5m8v-g2pv: An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter
ghsa_unreviewed·2022-05-17
CVE-2017-5162 [CRITICAL] CWE-306 GHSA-pp9f-5m8v-g2pv: An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter
An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Lack of authentication for remote service gives access to application set up and configuration.
No detection rules found.
2017-02-13
Published