CVE-2017-6048
published 2017-05-19CVE-2017-6048: A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet…
PriorityP266high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
15.54%
96.4th percentile
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior. Successful exploitation of this vulnerability could result in the attacker breaking out of the jailed shell and gaining full access to the system.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| satel-iberia | sennet_multitask_meter | <= 5.21a-1.18b | — |
| satel-iberia | sennet_optimal_datalogger | <= 5.37c-1.43c | — |
| satel-iberia | sennet_solar_datalogger | <= 5.03-1.56a | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is exploitable via Telnet; a Metasploit auxiliary scanner module exists targeting this service for OS command injection leading to root execution ↗
- →The attack vector is network-based, low complexity, requiring only low privileges — monitor for unexpected Telnet sessions or shell escapes on SenNet devices ↗
- →Successful exploitation results in a jailed shell breakout; alert on privilege escalation or unexpected root-level process spawning on affected SenNet devices ↗
- ·Affected products are SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior — detections should be scoped to these version ranges ↗
- ·CVSS v3 score is 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) — network-reachable devices with low-privilege credentials are fully at risk ↗
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Satel Iberia SenNet Data Logger and Electricity Meters
cisa_ics·2017-05-11
Satel Iberia SenNet Data Logger and Electricity Meters
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Satel Iberia SenNet Data Logger and Electricity Meters
Last RevisedMay 11, 2017
Alert CodeICSA-17-131-02
## CVSS v3 8.8
ATTENTION: Remotely exploitable/low skill level to exploit
Vendor: Satel Iberia
Equipment: SenNet Data Logger and Electricity Meters
Vulnerability: Command Injection
## AFFECTED PRODUCTS
The following versions of SenNet Data Logger and Electricity Meters, monitoring platforms, are affected:
- SenNet Optimal DataLogger V5.37c-1.43c and prior,
- SenNet Solar Datalogger V5.03-1.56a and prior, and
- SenNet Multitask Meter V5.21a-1.18b and prior.
## IMPACT
GHSA
GHSA-m2vj-hfvw-94qp: A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5
ghsa_unreviewed·2022-05-13
CVE-2017-6048 [HIGH] CWE-77 GHSA-m2vj-hfvw-94qp: A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior. Successful exploitation of this vulnerability could result in the attacker breaking out of the jailed shell and gaining full access to the system.
No detection rules found.
No writeups or analysis indexed.
2017-05-19
Published