Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2017-7906
- EPSS 0.2%
- Published 06.06.2018 20:29:00
- Last modified 21.11.2024 03:32:56
In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an attacker to launch a request impersonating that user.
9.8
CVE-2017-7931
- EPSS 2.28%
- Published 06.06.2018 20:29:00
- Last modified 21.11.2024 03:32:59
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.
9.8
CVE-2017-7933
- EPSS 0.39%
- Published 06.06.2018 20:29:00
- Last modified 21.11.2024 03:32:59
In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access.
1