CVE-2017-7933

CWE-522Insufficiently Protected Credentials3 documents3 sources
Severity
9.8CRITICAL
EPSS
0.4%
top 41.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
ABB IP Gateway Firmware
Timeline
PublishedJun 6
Latest updateMay 13

Description

In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-wv8j-5p3c-jqrx: In ABB IP GATEWAY 32022-05-13
CVEList
CVE-2017-7933: In ABB IP GATEWAY 32018-06-06
CVE-2017-7933 (CRITICAL CVSS 9.8) | In ABB IP GATEWAY 3.39 and prior | cvebase.io