5 matches found
ABB SREA-50 Communications Adapter Detection
Binary data 761514.prm...
CVE-2017-9664
In ABB SREA-01 revisions A, B, C: application versions up to 3.31.5, and SREA-50 revision A: application versions up to 3.32.8, an attacker may access internal files of ABB SREA-01 and SREA-50 legacy remote monitoring tools without any authorization over the network using a HTTP request which...
CVE-2017-9664
In ABB SREA-01 revisions A, B, C: application versions up to 3.31.5, and SREA-50 revision A: application versions up to 3.32.8, an attacker may access internal files of ABB SREA-01 and SREA-50 legacy remote monitoring tools without any authorization over the network using a HTTP request which...
CVE-2017-9664
CVE-2017-9664 affects ABB SREA-01 (revisions A/B/C; up to 3.31.5) and SREA-50 (revision A; up to 3.32.8). Vulnerability: Relative Path Traversal via HTTP using ../../ to read internal files (password hash exposure) and, after authorization, an exploit to run commands. Impact: remote attacker may ...
ABB SREA-01 and SREA-50
CVSS v3 9.8 ATTENTION: Remotely exploitable/low skill level to exploit. Public exploits are available. Vendor: ABB Equipment: SREA-01 and SREA-50 Vulnerability: Relative Path Traversal AFFECTED PRODUCTS ABB reports that the vulnerability affects the following SREA-01 and SREA-50 legacy remote...