Vulnerability Description
The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Accuenergy | Acuvim Iir | - |
| Accuenergy | Acuvim Iir Net Firmware | <= 3.08 |
| Accuenergy | Acuvim Ii | - |
| Accuenergy | Acuvim Ii Net Firmware | <= 3.08 |
Related Weaknesses (CWE)
References
- https://ics-cert.us-cert.gov/advisories/ICSA-16-105-02Third Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-16-105-02Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2016-2293?
CVE-2016-2293 is a vulnerability with a CVSS score of 8.6 (HIGH). The AXM-NET module in Accuenergy Acuvim II NET Firmware 3.08 and Acuvim IIR NET Firmware 3.08 allows remote attackers to discover settings via a direct request to an unspecified URL.
How severe is CVE-2016-2293?
CVE-2016-2293 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-2293?
Check the references section above for vendor advisories and patch information. Affected products include: Accuenergy Acuvim Iir, Accuenergy Acuvim Iir Net Firmware, Accuenergy Acuvim Ii, Accuenergy Acuvim Ii Net Firmware.