cbcvebase.
CVE-2017-6048
published 2017-05-19

CVE-2017-6048: A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet…

PriorityP266high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
EXPLOIT
EPSS
15.54%
96.4th percentile
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior. Successful exploitation of this vulnerability could result in the attacker breaking out of the jailed shell and gaining full access to the system.

Affected

3 ranges
VendorProductVersion rangeFixed in
satel-iberiasennet_multitask_meter<= 5.21a-1.18b
satel-iberiasennet_optimal_datalogger<= 5.37c-1.43c
satel-iberiasennet_solar_datalogger<= 5.03-1.56a

Detection & IOCsextracted from sources · hover to see the quote

  • Vulnerability is exploitable via Telnet; a Metasploit auxiliary scanner module exists targeting this service for OS command injection leading to root execution
  • The attack vector is network-based, low complexity, requiring only low privileges — monitor for unexpected Telnet sessions or shell escapes on SenNet devices
  • Successful exploitation results in a jailed shell breakout; alert on privilege escalation or unexpected root-level process spawning on affected SenNet devices
  • ·Affected products are SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior — detections should be scoped to these version ranges
  • ·CVSS v3 score is 8.8 (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) — network-reachable devices with low-privilege credentials are fully at risk

CVSS provenance

nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.