CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-15583

The embedded web server on ABB Fox515T 1.0 devices is vulnerable to Local File Inclusion. It accepts a parameter that specifies a file for display or for use as a template. The filename is not validated; an attacker could retrieve any file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 57.2%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 5.0

References

http://search-ext.abb.com/library/Download.aspx?DocumentID=1KHW028693&LanguageCode=en&DocumentPartId=&Action=Launch
http://search-ext.abb.com/library/Download.aspx?DocumentID=1KHW028693&LanguageCode=en&DocumentPartId=&Action=Launch

Products affected by CVE-2017-15583

Hitachienergy » Fox515t » Version: N/A

cpe:2.3:h:hitachienergy:fox515t:-
Hitachienergy » Fox515t Firmware » Version: 1.0

cpe:2.3:o:hitachienergy:fox515t_firmware:1.0
Hitachienergy » Fox515t Firmware » Version: r.1.0_ics10

cpe:2.3:o:hitachienergy:fox515t_firmware:r.1.0_ics10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15583

Products

Pricing

Contact Us