3 matches found
ABB Asset Suite
1. EXECUTIVE SUMMARY CVSS v3 7.1 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: ABB Equipment: Asset Suite Vulnerability: Authorization Bypass Through User-Controlled Key 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker access to...
CVE-2019-18998
Insufficient access control in the web interface of ABB Asset Suite versions 9.0 to 9.3, 9.4 prior to 9.4.2.6, 9.5 prior to 9.5.3.2 and 9.6.0 enables full access to directly referenced objects. An attacker with knowledge of a resource's URL can access the resource directly...
CVE-2019-18998
CVE-2019-18998 concerns ABB Asset Suite where an authorization flaw in the web interface allows an attacker who knows a resource URL to access the resource directly, effectively bypassing access controls. Affected versions include 9.0–9.3, 9.4 prior to 9.4.2.6, 9.5 prior to 9.5.3.2, and 9.6.0. Th...