Vulnerability Description
A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and SenNet Multitask Meter V5.21a-1.18b and prior. Successful exploitation of this vulnerability could result in the attacker breaking out of the jailed shell and gaining full access to the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Satel-Iberia | Sennet Multitask Meter | <= 5.21a-1.18b |
| Satel-Iberia | Sennet Optimal Datalogger | <= 5.37c-1.43c |
| Satel-Iberia | Sennet Solar Datalogger | <= 5.03-1.56a |
Related Weaknesses (CWE)
References
- https://ics-cert.us-cert.gov/advisories/ICSA-17-131-02MitigationThird Party AdvisoryUS Government Resource
- https://ics-cert.us-cert.gov/advisories/ICSA-17-131-02MitigationThird Party AdvisoryUS Government Resource
FAQ
What is CVE-2017-6048?
CVE-2017-6048 is a vulnerability with a CVSS score of 8.8 (HIGH). A Command Injection issue was discovered in Satel Iberia SenNet Data Logger and Electricity Meters: SenNet Optimal DataLogger V5.37c-1.43c and prior, SenNet Solar Datalogger V5.03-1.56a and prior, and...
How severe is CVE-2017-6048?
CVE-2017-6048 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-6048?
Check the references section above for vendor advisories and patch information. Affected products include: Satel-Iberia Sennet Multitask Meter, Satel-Iberia Sennet Optimal Datalogger, Satel-Iberia Sennet Solar Datalogger.