CVE-2017-7931

EPSS 2.6%CWE-287

In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.

Productos afectados

ICS-CERT · ABB IP GATEWAY

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://ics-cert.us-cert.gov/advisories/ICSA-18-156-01 http://www.securityfocus.com/bid/104388