CVE-2019-19094

Severity

7.6HIGH

EPSS

0.4%

top 42.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 2

Latest updateMay 24

Description

Lack of input checks for SQL queries in ABB eSOMS versions 3.9 to 6.0.3 might allow an attacker SQL injection attacks against the backend database.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:LExploitability: 2.8 | Impact: 4.7

▶CVEListV5abb/esoms3.9 to 6.0.3

GHSA

GHSA-wx45-qjwh-7qwp: Lack of input checks for SQL queries in ABB eSOMS versions 3↗2022-05-24

▶

CVEList

ABB eSOMS: SQL injection vulnerability↗2020-04-02

▶