CVE-2019-19091

Summary

For ABB eSOMS versions 4.0 to 6.0.3, HTTPS responses contain comments with sensitive information about the application. An attacker might use this detail information to specifically craft the attack.

Affected Software

VendorProductVersion RangeStatus
ABBeSOMS4.0 to 6.0.3affected

Weaknesses

  • CWE-16: CWE-16 Configuration
  • CWE-202: CWE-202 Exposure of Sensitive Data Through Data Queries

ADP Enrichment

CVE Program Container

Additional References

References