CVE-2019-18995
published 2019-12-18CVE-2019-18995: The HMISimulator component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier fails to validate the content-length field for HTTP requests, exposing…
medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
The HMISimulator component of ABB PB610 Panel Builder 600 versions 2.8.0.424 and earlier fails to validate the content-length field for HTTP requests, exposing HMISimulator to denial of service via crafted HTTP requests manipulating the content-length setting.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| abb | pb610_panel_builder_600 | <= 2.8.0.424 | — |
| abb | pb610_panel_builder_600 | unspecified – 2.8.0.424 | — |