CVE-2019-19091

For ABB eSOMS versions 4.0 to 6.0.3, HTTPS responses contain comments with sensitive information about the application. An attacker might use this detail information to specifically craft the attack.
Configurations

Configuration 1 (hide)

cpe:2.3:a:hitachienergy:esoms:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:34

Type Values Removed Values Added
References () https://search.abb.com/library/Download.aspx?DocumentID=9AKK107492A9964&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory () https://search.abb.com/library/Download.aspx?DocumentID=9AKK107492A9964&LanguageCode=en&DocumentPartId=&Action=Launch - Vendor Advisory

Information

Published : 2020-04-02 20:15

Updated : 2024-11-21 04:34


NVD link : CVE-2019-19091

Mitre link : CVE-2019-19091

CVE.ORG link : CVE-2019-19091


JSON object : View

Products Affected

hitachienergy

  • esoms
CWE
CWE-16

Configuration

CWE-202

Exposure of Sensitive Information Through Data Queries

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor