Hacking Binom3 Electric Power Quality Meters
ELNet Energy meter & Electrical Powermeter vulnerabilities – another case of poor software security practices.
Reported multiple security issues in Powerlogic/Schneider Electric IONXXXX series power meters
Reported to ICS-CERT – July 2016
Advisory published – Nov 2016
The following IONXXXX series power meter versions are affected:
ION8800 series, and
Exploiting RS232-NET Converter (model JTC-200)
Seen deployed in:
CHTD, Chunghwa Telecom Co., Ltd. (Taiwan)
HiNet (Taiwan & China)
PT Comunicacoes (Portugal)
Sony Network Taiwan Limited (Taiwan)
Vodafone Portugal (Portugal)
[ICS] Multiple vulnerabilities in Sierra Wireless AirLink Raven XE Industrial 3G Gateway
The Sierra Wireless Raven XE and XT wireless gateways are used in the following industries and applications: utilities, manufacturing, automation, oil and gas, Ethernet-based SCADA, and telemetry.
EdgeCore – Layer2+ Fast Ethernet Standalone Switch ES3526XA Manager – Multiple Vulnerabilities
Also rebranded as: SMC TigerSwitch 10/100 SMC6128L2 Manager
[ICS] Papouch TME Temperature & Humidity Thermometers – Multiple Vulnerabilities
1. Papouch TME Ethernet thermometer
2. Papouch TME multi: Temperature and humidity via Ethernet
All versions are affected.
While on a pentest, I found multiple vulnerabilities in HP StoreEver MSL6480 Tape Library v4.10.
[ICS] Meteocontrol WEB’log Multiple Vulnerabilities
About MeteoControl WEB’log
Meteocontrol is a Germany-based company that maintains offices in several countries around the world, including the US, China, Italy, Spain, France, Switzerland, and Israel.
The affected products, WEB’log, are web-based SCADA systems that provide functions to manage energy and power configurations in different connected (energy/industrial) devices.