← back
CVE-2017-6048

CVE-2017-6048

EPSS 15.5%CWE-77
Vexday Risk Score
23Low
SSVC decision (CISA)
Attend
PoC available → attend closely
CVSS EPSS 15.5%KEV nãoPoC Nuclei Metasploit simPatch
Lifecycle
07 Apr 2017Metasploit module available
19 May 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior. Successful exploitation of this vulnerability could result in the attacker breaking out of the jailed shell and gaining full access to the system.
Affected products
n/a · Satel Iberia SenNet Data Logger and Electricity Meters

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-17-131-02