|ID||CVSS||Summary||Last (major) update||Published|
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.
|09-10-2019 - 23:30||06-06-2018 - 20:29|
In ABB IP GATEWAY 3.39 and prior, some configuration files contain passwords stored in plain-text, which may allow an attacker to gain unauthorized access.
|03-10-2019 - 00:03||06-06-2018 - 20:29|
In ABB IP GATEWAY 3.39 and prior, the web server does not sufficiently verify that a request was performed by the authenticated user, which may allow an attacker to launch a request impersonating that user.
|09-10-2019 - 23:29||06-06-2018 - 20:29|