cbcvebase.
CVE-2017-7689
published 2017-04-11

CVE-2017-7689: A Command Injection vulnerability in Schneider Electric homeLYnk Controller exists in all versions before 1.5.0.

PriorityP264critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
5.53%
91.8th percentile
A Command Injection vulnerability in Schneider Electric homeLYnk Controller exists in all versions before 1.5.0.

Affected

1 ranges
VendorProductVersion rangeFixed in
schneider-electrichomelynk_controller_lss100100_firmware< 1.5.01.5.0

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability is triggered via specially crafted HTTP POST requests targeting network features of the homeLYnk controller; monitor for anomalous or malformed POST requests to the device's web interface.
  • Exploitation requires user interaction (e.g., social engineering a user to submit a crafted POST request); correlate with phishing or CSRF-style activity targeting homeLYnk controller users.
  • The vulnerability class is Command Injection (CWE-77); inspect POST request parameters for shell metacharacters or command chaining sequences directed at the homeLYnk Controller (LSS100100) running firmware prior to V1.5.0.
  • ·All firmware versions prior to V1.5.0 of the homeLYnk Controller (LSS100100) are affected; detections should be scoped to devices running these older firmware versions.
  • ·No known public exploits specifically targeting this vulnerability were identified at time of advisory publication, limiting the ability to build signature-based detections from known exploit samples.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.