Abb Ip Gateway Firmware vulnerabilities
3 known vulnerabilities affecting abb/ip_gateway_firmware.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1
Vulnerabilities
Page 1 of 1
CVE-2017-7931CRITICALCVSS 9.8≤ 3.392018-06-06
CVE-2017-7931 [CRITICAL] CWE-287 CVE-2017-7931: In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.
nvd
CVE-2017-7933CRITICALCVSS 9.8≤ 3.392018-06-06
CVE-2017-7933 [CRITICAL] CWE-522 CVE-2017-7933: In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, w
In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access.
nvd
CVE-2017-7906HIGHCVSS 8.8≤ 3.392018-06-06
CVE-2017-7906 [HIGH] CWE-352 CVE-2017-7906: In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was per
In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an attacker to launch a request impersonating that user.
nvd