CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-18997

The HMISimulator component of ABB PB610 Panel Builder 600 uses the readFile/writeFile interface to manipulate the work file. Path configuration in PB610 HMISimulator versions 2.8.0.424 and earlier potentially allows access to files outside of the working directory, thus potentially supporting unauthorized file access.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.8%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 5.0

References

http://search.abb.com/library/Download.aspx?DocumentID=3ADR010466&LanguageCode=en&DocumentPartId=&Action=Launch
http://search.abb.com/library/Download.aspx?DocumentID=3ADR010466&LanguageCode=en&DocumentPartId=&Action=Launch

Products affected by CVE-2019-18997

Abb » Pb610 Panel Builder 600 » Version: N/A

cpe:2.3:a:abb:pb610_panel_builder_600:-
Abb » Pb610 Panel Builder 600 » Version: 1.90.0.975

cpe:2.3:a:abb:pb610_panel_builder_600:1.90.0.975
Abb » Pb610 Panel Builder 600 » Version: 2.8.0.424

cpe:2.3:a:abb:pb610_panel_builder_600:2.8.0.424

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-18997

Products

Pricing

Contact Us