← back
CVE-2019-19091

ABB eSOMS: HTTP response information leakage

CVSS 4.3 MEDIUMEPSS 0.8%CWE-16CWE-202
For ABB eSOMS versions 4.0 to 6.0.3, HTTPS responses contain comments with sensitive information about the application. An attacker might use this detail information to specifically craft the attack.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Affected products
ABB · eSOMS

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://search.abb.com/library/Download.aspx?DocumentID=9AKK107492A9964&LanguageCode=en&DocumentPartId=&Action=Launch