CVE-2017-7916
First published: Mon Aug 07 2017(Updated: )
A Permissions, Privileges, and Access Controls issue was discovered in ABB VSN300 WiFi Logger Card versions 1.8.15 and prior, and VSN300 WiFi Logger Card for React versions 2.1.3 and prior. The web application does not properly restrict privileges of the Guest account. A malicious user may be able to gain access to configuration information that should be restricted.
Credit: ics-cert@hq.dhs.gov
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Abb Vsn300 Firmware | <=1.8.15 | |
| ABB VSN300 | ||
| Abb Vsn300 For React Firmware | =2.1.3 | |
| Abb Vsn300 For React |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/author
- agent/tags
- agent/softwarecombine
- agent/description
- agent/first-publish-date
- agent/event
- vendor/abb
- canonical/abb vsn300 firmware
- version/abb vsn300 firmware/1.8.15
- canonical/abb vsn300
- canonical/abb vsn300 for react firmware
- version/abb vsn300 for react firmware/2.1.3
- canonical/abb vsn300 for react