Lucene search

[email protected]NVD:CVE-2023-1258

HistoryMar 31, 2023 - 8:15 a.m.

CVE-2023-1258

2023-03-3108:15:06

CWE-200

[email protected]

web.nvd.nist.gov

sensitive information

unauthorized actor

abb flow-x.

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS

0.012

Percentile

85.2%

JSON

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in ABB Flow-X firmware on Flow-X embedded hardware (web service modules) allows Footprinting.This issue affects Flow-X: before 4.0.

Affected configurations

Nvd

Node

abbflow-x\/m_firmwareRange≤3.2.6

AND

abbflow-x\/mMatch-

Node

abbflow-x\/c_firmwareRange≤3.2.6

AND

abbflow-x\/cMatch-

Node

abbflow-x\/k_firmwareRange≤3.2.6

AND

abbflow-x\/kMatch-

Node

abbflow-x\/s_firmwareRange≤3.2.6

AND

abbflow-x\/sMatch-

Node

abbflow-x\/p_firmwareRange≤3.2.6

AND

abbflow-x\/pMatch-

Node

abbflow-x_r_firmwareRange≤3.2.6

AND

abbflow-x_rMatch-

Node

abbflow-x\/t_firmwareRange≤3.2.6

AND

abbflow-x\/tMatch-

Node

abbflow-x\/web_firmwareRange≤3.2.6

AND

abbflow-x\/webMatch-

VendorProductVersionCPE
abbflow-x\/m_firmware*cpe:2.3:o:abb:flow-x\/m_firmware:*:*:*:*:*:*:*:*
abbflow-x\/m-cpe:2.3:h:abb:flow-x\/m:-:*:*:*:*:*:*:*
abbflow-x\/c_firmware*cpe:2.3:o:abb:flow-x\/c_firmware:*:*:*:*:*:*:*:*
abbflow-x\/c-cpe:2.3:h:abb:flow-x\/c:-:*:*:*:*:*:*:*
abbflow-x\/k_firmware*cpe:2.3:o:abb:flow-x\/k_firmware:*:*:*:*:*:*:*:*
abbflow-x\/k-cpe:2.3:h:abb:flow-x\/k:-:*:*:*:*:*:*:*
abbflow-x\/s_firmware*cpe:2.3:o:abb:flow-x\/s_firmware:*:*:*:*:*:*:*:*
abbflow-x\/s-cpe:2.3:h:abb:flow-x\/s:-:*:*:*:*:*:*:*
abbflow-x\/p_firmware*cpe:2.3:o:abb:flow-x\/p_firmware:*:*:*:*:*:*:*:*
abbflow-x\/p-cpe:2.3:h:abb:flow-x\/p:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
abb	flow-x\/m_firmware	*	cpe:2.3:o:abb:flow-x\/m_firmware::::::::
abb	flow-x\/m	-	cpe:2.3:h:abb:flow-x\/m:-:::::::*
abb	flow-x\/c_firmware	*	cpe:2.3:o:abb:flow-x\/c_firmware::::::::
abb	flow-x\/c	-	cpe:2.3:h:abb:flow-x\/c:-:::::::*
abb	flow-x\/k_firmware	*	cpe:2.3:o:abb:flow-x\/k_firmware::::::::
abb	flow-x\/k	-	cpe:2.3:h:abb:flow-x\/k:-:::::::*
abb	flow-x\/s_firmware	*	cpe:2.3:o:abb:flow-x\/s_firmware::::::::
abb	flow-x\/s	-	cpe:2.3:h:abb:flow-x\/s:-:::::::*
abb	flow-x\/p_firmware	*	cpe:2.3:o:abb:flow-x\/p_firmware::::::::
abb	flow-x\/p	-	cpe:2.3:h:abb:flow-x\/p:-:::::::*