NVD

Id
82224  
Name
CVE-2017-5164  
Description
An issue was discovered in BINOM3 Universal Multifunctional Electric Power Quality Meter. Input sent from a malicious client is not properly verified by the server. An attacker can execute arbitrary script code in another user's browser session (CROSS-SITE SCRIPTING).  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-02-28  
Published
2017-02-13  
Modified Date
2017-02-16  
Seq
2017-5164  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
65225 JVNDB-2017-001592 BINOM3 Universal Multifunctional Electric Power Quality Meter におけるクロスサイトスクリプティングの脆弱性 BINOM3 Universal Multifunctional Electric Power Quality Meter は、悪意のあるクライアントから送信された入力をサーバが適切に検証しないため、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2017-5164 CVE-2017-5164 82224 4.3 6.1 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-001592.html 2017-01-31 2017-03-07 View