CVE-2019-19106

ABB/Busch-Jaeger Telephone Gateway TG/S 3.2 Access Control issues

CVSS 9.1 CRITICALEPSS 1.3%CWE-264

Improper implementation of Access Control in ABB Telephone Gateway TG/S 3.2 and Busch-Jaeger 6186/11 Telefon-Gateway allows an unauthorized user to access data marked as restricted, such as viewing or editing user profiles and application settings.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Produtos afetados

ABB · TG/S 3.2 Telephone Gateway Busch-Jaeger · 6186/11 Telefon-Gateway

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://search.abb.com/library/Download.aspx?DocumentID=9AKK107680A3921&LanguageCode=en&DocumentPartId=&Action=Launch