CVE-2019-19092

Summary

ABB eSOMS versions 4.0 to 6.0.3 use ASP.NET Viewstate without Message Authentication Code (MAC). Alterations to Viewstate might thus not be noticed.

Affected Software

VendorProductVersion RangeStatus
ABBeSOMS4.0 to 6.0.3affected

Weaknesses

  • CWE-16: CWE-16 Configuration

ADP Enrichment

CVE Program Container

Additional References

References