Total
3 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2017-7931 | 1 Abb | 2 Ip Gateway, Ip Gateway Firmware | 2019-10-09 | 7.5 HIGH | 9.8 CRITICAL |
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication. | |||||
CVE-2017-7906 | 1 Abb | 2 Ip Gateway, Ip Gateway Firmware | 2019-10-09 | 6.8 MEDIUM | 8.8 HIGH |
In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an attacker to launch a request impersonating that user. | |||||
CVE-2017-7933 | 1 Abb | 2 Ip Gateway, Ip Gateway Firmware | 2019-10-02 | 5.0 MEDIUM | 9.8 CRITICAL |
In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access. |