Security Advisory

CVE-2019-18998

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-17 18:40:38

Last updated 2024-08-05 02:02:39

Assigner ABB

State PUBLISHED

Description

Insufficient access control in the web interface of ABB Asset Suite versions 9.0 to 9.3, 9.4 prior to 9.4.2.6, 9.5 prior to 9.5.3.2 and 9.6.0 enables full access to directly referenced objects. An attacker with knowledge of a resources URL can access the resource directly.

← Browse all CVEs View on cve.org ↗