Lucene search
ABBCVELIST:CVE-2023-1258HistoryMar 31, 2023 - 7:56 a.m.
CVE-2023-1258 Flow-X disclosure of sensitive information to unauthenticated users
2023-03-3107:56:05
CWE-200
ABB
www.cve.org
6
cve-2023-1258
sensitive information exposure
abb flow-x
footprinting
unauthorized access
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.012
Percentile
85.2%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ABB Flow-X firmware on Flow-X embedded hardware (web service modules) allows Footprinting.This issue affects Flow-X: before 4.0.
CNA Affected
[
{
"defaultStatus": "unaffected",
"modules": [
"web service"
],
"packageName": "firmware",
"platforms": [
"Flow-X embedded hardware"
],
"product": "Flow-X",
"vendor": "ABB",
"versions": [
{
"lessThan": "4.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]Related
cve
cve
CVE-2023-1258
2023-03-31 08:15:06
nvd
nvd
CVE-2023-1258
2023-03-31 08:15:06
zdt
zdt
ABB FlowX v4.00 - Exposure of Sensitive Information Exploit
2023-07-19 00:00:00
exploitdb
exploitdb
ABB FlowX v4.00 - Exposure of Sensitive Information
2023-07-19 00:00:00
packetstorm
packetstorm
ABB FlowX 4.00 Information Disclosure
2023-07-20 00:00:00
prion
prion
Code injection
2023-03-31 08:15:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
EPSS
0.012
Percentile
85.2%
Related for CVELIST:CVE-2023-1258