CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-18995

Pluto Safety PLC Gateway Ethernet devices ABB GATE-E1 and GATE-E2 all versions do not allow authentication to be configured on administrative telnet or web interfaces, which could enable various effects vectors, including conducting device resets, reading or modifying registers, and changing configuration settings such as IP addresses.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 79.0%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www.securityfocus.com/bid/106247
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-01
http://www.securityfocus.com/bid/106247
https://ics-cert.us-cert.gov/advisories/ICSA-18-352-01

Products affected by CVE-2018-18995

Abb » Gate-E1 » Version: N/A

cpe:2.3:h:abb:gate-e1:-
Abb » Gate-E2 » Version: N/A

cpe:2.3:h:abb:gate-e2:-
Abb » Gate-E1 Firmware » Version: N/A

cpe:2.3:o:abb:gate-e1_firmware:-
Abb » Gate-E2 Firmware » Version: N/A

cpe:2.3:o:abb:gate-e2_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-18995

Products

Pricing

Contact Us