Filtered by vendor Hitachienergy
Subscribe
Filtered by product Ellipse Enterprise Asset Management
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-27416 | 1 Hitachienergy | 1 Ellipse Enterprise Asset Management | 2024-02-28 | 5.8 MEDIUM | 5.4 MEDIUM |
An attacker could exploit this vulnerability in Hitachi ABB Power Grids Ellipse Enterprise Asset Management (EAM) versions prior to and including 9.0.25 by tricking a user to click on a link containing malicious code that would then be run by the web browser. This can result in the compromise of confidential information, or even the takeover of the user’s session. | |||||
CVE-2021-27414 | 1 Hitachienergy | 1 Ellipse Enterprise Asset Management | 2024-02-28 | 4.3 MEDIUM | 6.1 MEDIUM |
An attacker could trick a user of Hitachi ABB Power Grids Ellipse Enterprise Asset Management (EAM) versions prior to and including 9.0.25 into visiting a malicious website posing as a login page for the Ellipse application and gather authentication credentials. |