CVE-2017-9664P2CRITICALCVSS 9.8≤ 3.31.52018-05-24
CVE-2017-9664 [CRITICAL] CWE-23 CVE-2017-9664: In ABB SREA-01 revisions A, B, C: application versions up to 3.31.5, and SREA-50 revision A: applica
In ABB SREA-01 revisions A, B, C: application versions up to 3.31.5, and SREA-50 revision A: application versions up to 3.32.8, an attacker may access internal files of ABB SREA-01 and SREA-50 legacy remote monitoring tools without any authorization over the network using a HTTP request which refers to files using ../../ relative paths. Once the inte
nvd